ffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:15:47 executing program 2: mkdir(0x0, 0x0) dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 20:15:47 executing program 4: mkdir(0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:15:47 executing program 3: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r6, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) [ 3289.310474] 9p: Unknown access argument  20:15:49 executing program 2: mkdir(0x0, 0x0) dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 20:15:50 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:15:50 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:15:50 executing program 3: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r6, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r6, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) [ 3292.136584] 9pnet: Insufficient options for proto=fd [ 3292.181825] syz-executor.2: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3292.220818] 9p: Unknown access argument  [ 3292.250117] syz-executor.2 cpuset=syz2 mems_allowed=0-1 [ 3292.255549] CPU: 1 PID: 8635 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3292.263345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3292.272710] Call Trace: [ 3292.275528] dump_stack+0x142/0x197 [ 3292.279170] warn_alloc.cold+0x96/0x1af [ 3292.283150] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3292.288008] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3292.293299] __alloc_pages_slowpath+0x23c6/0x2930 [ 3292.298163] ? save_trace+0x290/0x290 [ 3292.301976] ? warn_alloc+0xf0/0xf0 [ 3292.305622] ? __might_sleep+0x93/0xb0 [ 3292.309520] __alloc_pages_nodemask+0x62c/0x7a0 [ 3292.314201] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3292.319226] ? ____cache_alloc_node+0x1be/0x1d0 [ 3292.323903] ? cache_grow_begin+0x335/0x400 [ 3292.328236] cache_grow_begin+0x80/0x400 [ 3292.332308] ? __cpuset_node_allowed+0xff/0x450 [ 3292.336992] fallback_alloc+0x1fd/0x2c0 [ 3292.340978] ____cache_alloc_node+0x1be/0x1d0 [ 3292.345579] kmem_cache_alloc_trace+0x213/0x790 [ 3292.350235] ? debug_smp_processor_id+0x1c/0x20 [ 3292.354893] ? perf_trace_lock+0x109/0x500 [ 3292.359267] kvm_dev_ioctl+0x163/0x1620 [ 3292.363251] ? kvm_put_kvm+0xaa0/0xaa0 [ 3292.367151] ? kvm_put_kvm+0xaa0/0xaa0 [ 3292.371032] do_vfs_ioctl+0x7ae/0x1060 [ 3292.374913] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3292.379657] ? lock_downgrade+0x740/0x740 [ 3292.383797] ? ioctl_preallocate+0x1c0/0x1c0 [ 3292.388202] ? __fget+0x237/0x370 [ 3292.391651] ? security_file_ioctl+0x89/0xb0 [ 3292.396058] SyS_ioctl+0x8f/0xc0 [ 3292.399412] ? do_vfs_ioctl+0x1060/0x1060 [ 3292.403554] do_syscall_64+0x1e8/0x640 [ 3292.407435] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3292.412278] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3292.417453] RIP: 0033:0x45a6f9 [ 3292.420627] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3292.428322] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3292.435577] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 3292.442831] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3292.450083] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3292.457336] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3292.543917] Mem-Info: [ 3292.547002] active_anon:1344281 inactive_anon:565 isolated_anon:12 [ 3292.547002] active_file:585 inactive_file:629 isolated_file:69 [ 3292.547002] unevictable:0 dirty:12 writeback:0 unstable:0 [ 3292.547002] slab_reclaimable:17030 slab_unreclaimable:115055 [ 3292.547002] mapped:53301 shmem:7461 pagetables:16475 bounce:0 [ 3292.547002] free:30026 free_pcp:64 free_cma:0 [ 3292.580905] Node 0 active_anon:1997548kB inactive_anon:1328kB active_file:296kB inactive_file:280kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:209176kB dirty:32kB writeback:0kB shmem:11956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3292.615432] Node 1 active_anon:3379576kB inactive_anon:932kB active_file:1932kB inactive_file:2436kB unevictable:0kB isolated(anon):48kB isolated(file):252kB mapped:3928kB dirty:16kB writeback:0kB shmem:17888kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3292.686779] Node 0 DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3292.745104] syz-executor.3: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3292.756041] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3292.761202] Node 0 DMA32 free:39576kB min:36380kB low:45472kB high:54564kB active_anon:1993000kB inactive_anon:1328kB active_file:460kB inactive_file:496kB unevictable:0kB writepending:4kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12192kB pagetables:28332kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3292.790453] syz-executor.3 cpuset=syz3 mems_allowed=0-1 [ 3292.795857] CPU: 1 PID: 8637 Comm: syz-executor.3 Not tainted 4.14.158-syzkaller #0 [ 3292.803647] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3292.812996] Call Trace: [ 3292.815584] dump_stack+0x142/0x197 [ 3292.819201] warn_alloc.cold+0x96/0x1af [ 3292.823167] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3292.828017] ? __alloc_pages_direct_compact+0x290/0x380 [ 3292.833368] __alloc_pages_slowpath+0x23c6/0x2930 [ 3292.838205] ? save_trace+0x290/0x290 [ 3292.841993] ? warn_alloc+0xf0/0xf0 [ 3292.845615] ? __might_sleep+0x93/0xb0 [ 3292.849492] __alloc_pages_nodemask+0x62c/0x7a0 [ 3292.854147] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3292.859148] ? ____cache_alloc_node+0x1be/0x1d0 [ 3292.863813] ? cache_grow_begin+0x335/0x400 [ 3292.868124] cache_grow_begin+0x80/0x400 [ 3292.872171] ? __cpuset_node_allowed+0xff/0x450 [ 3292.876825] fallback_alloc+0x1fd/0x2c0 [ 3292.880805] ____cache_alloc_node+0x1be/0x1d0 [ 3292.885286] kmem_cache_alloc_trace+0x213/0x790 [ 3292.889940] ? debug_smp_processor_id+0x1c/0x20 [ 3292.894593] ? perf_trace_lock+0x109/0x500 [ 3292.898817] kvm_dev_ioctl+0x163/0x1620 [ 3292.902782] ? kvm_put_kvm+0xaa0/0xaa0 [ 3292.906657] ? kvm_put_kvm+0xaa0/0xaa0 [ 3292.910531] do_vfs_ioctl+0x7ae/0x1060 [ 3292.914409] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3292.919149] ? lock_downgrade+0x740/0x740 [ 3292.923282] ? ioctl_preallocate+0x1c0/0x1c0 [ 3292.927680] ? __fget+0x237/0x370 [ 3292.931126] ? security_file_ioctl+0x89/0xb0 [ 3292.935520] SyS_ioctl+0x8f/0xc0 [ 3292.938869] ? do_vfs_ioctl+0x1060/0x1060 [ 3292.943012] do_syscall_64+0x1e8/0x640 [ 3292.946884] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3292.951718] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3292.956905] RIP: 0033:0x45a6f9 [ 3292.960088] RSP: 002b:00007ff826292c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3292.967779] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3292.975042] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3292.982298] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3292.989707] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff8262936d4 [ 3292.996977] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3293.026673] lowmem_reserve[]: 0 0 0 0 0 [ 3293.038703] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3293.084276] lowmem_reserve[]: 0 0 0 0 0 [ 3293.088501] Node 1 Normal free:70576kB min:53508kB low:66884kB high:80260kB active_anon:3379580kB inactive_anon:932kB active_file:1992kB inactive_file:2400kB unevictable:0kB writepending:192kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11264kB pagetables:37464kB bounce:0kB free_pcp:316kB local_pcp:124kB free_cma:0kB [ 3293.125145] lowmem_reserve[]: 0 0 0 0 0 [ 3293.129357] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3293.153756] Node 0 DMA32: 1652*4kB (UM) 2219*8kB (UME) 977*16kB (UME) 2*32kB (U) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 40056kB [ 3293.174634] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3293.188013] Node 1 Normal: 1402*4kB (UE) 407*8kB (UMEH) 1921*16kB (UEH) 909*32kB (UME) 2*64kB (UM) 4*128kB (H) 1*256kB (H) 1*512kB (H) 0*1024kB 0*2048kB 0*4096kB = 70096kB [ 3293.217989] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3293.247459] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3293.273507] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3293.307615] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3293.325959] 8390 total pagecache pages [ 3293.331001] 0 pages in swap cache [ 3293.334574] Swap cache stats: add 0, delete 0, find 0/0 [ 3293.345702] Free swap = 0kB [ 3293.348800] Total swap = 0kB [ 3293.352962] 1965979 pages RAM [ 3293.356178] 0 pages HighMem/MovableOnly [ 3293.366153] 335858 pages reserved [ 3293.369721] 0 pages cma reserved 20:15:56 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:15:56 executing program 2: mkdir(0x0, 0x0) dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 20:15:56 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:15:56 executing program 3: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) [ 3298.970321] 9p: Unknown access argument  [ 3298.994289] 9pnet: Insufficient options for proto=fd [ 3299.101903] syz-executor.0: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3299.126359] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 3299.132779] CPU: 1 PID: 8652 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3299.140588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3299.149928] Call Trace: [ 3299.152504] dump_stack+0x142/0x197 [ 3299.156128] warn_alloc.cold+0x96/0x1af [ 3299.160090] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3299.164939] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3299.170205] __alloc_pages_slowpath+0x23c6/0x2930 [ 3299.175042] ? save_trace+0x290/0x290 [ 3299.178834] ? warn_alloc+0xf0/0xf0 [ 3299.182462] ? __might_sleep+0x93/0xb0 [ 3299.186336] __alloc_pages_nodemask+0x62c/0x7a0 [ 3299.190998] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3299.196000] ? ____cache_alloc_node+0x1be/0x1d0 [ 3299.200658] ? cache_grow_begin+0x335/0x400 [ 3299.204968] cache_grow_begin+0x80/0x400 [ 3299.209017] ? __cpuset_node_allowed+0xff/0x450 [ 3299.213672] fallback_alloc+0x1fd/0x2c0 [ 3299.217635] ____cache_alloc_node+0x1be/0x1d0 [ 3299.222119] kmem_cache_alloc_trace+0x213/0x790 [ 3299.226769] ? debug_smp_processor_id+0x1c/0x20 [ 3299.231427] ? perf_trace_lock+0x109/0x500 [ 3299.235653] kvm_dev_ioctl+0x163/0x1620 [ 3299.239615] ? kvm_put_kvm+0xaa0/0xaa0 [ 3299.243493] ? kvm_put_kvm+0xaa0/0xaa0 [ 3299.247368] do_vfs_ioctl+0x7ae/0x1060 [ 3299.251245] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3299.255986] ? lock_downgrade+0x740/0x740 [ 3299.260122] ? ioctl_preallocate+0x1c0/0x1c0 [ 3299.264520] ? __fget+0x237/0x370 [ 3299.267967] ? security_file_ioctl+0x89/0xb0 [ 3299.272365] SyS_ioctl+0x8f/0xc0 [ 3299.275718] ? do_vfs_ioctl+0x1060/0x1060 [ 3299.279857] do_syscall_64+0x1e8/0x640 [ 3299.283728] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3299.288562] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3299.293741] RIP: 0033:0x45a6f9 [ 3299.296926] RSP: 002b:00007f063534ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3299.304627] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3299.311883] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3299.319139] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3299.326392] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063534b6d4 [ 3299.333648] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3299.453400] syz-executor.2: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3299.471816] syz-executor.2 cpuset=syz2 mems_allowed=0-1 [ 3299.477844] CPU: 0 PID: 8653 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3299.485650] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3299.495003] Call Trace: [ 3299.497600] dump_stack+0x142/0x197 [ 3299.501235] warn_alloc.cold+0x96/0x1af [ 3299.505213] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3299.510071] ? __alloc_pages_direct_compact+0x290/0x380 [ 3299.515438] __alloc_pages_slowpath+0x23c6/0x2930 [ 3299.520297] ? save_trace+0x290/0x290 [ 3299.524108] ? warn_alloc+0xf0/0xf0 [ 3299.527752] ? __might_sleep+0x93/0xb0 [ 3299.531645] __alloc_pages_nodemask+0x62c/0x7a0 [ 3299.538165] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3299.543171] ? ____cache_alloc_node+0x1be/0x1d0 [ 3299.547829] ? cache_grow_begin+0x335/0x400 [ 3299.552147] cache_grow_begin+0x80/0x400 [ 3299.556215] ? __cpuset_node_allowed+0xff/0x450 [ 3299.560882] fallback_alloc+0x1fd/0x2c0 [ 3299.564850] ____cache_alloc_node+0x1be/0x1d0 [ 3299.569370] kmem_cache_alloc_trace+0x213/0x790 [ 3299.574024] ? debug_smp_processor_id+0x1c/0x20 [ 3299.581978] ? perf_trace_lock+0x109/0x500 [ 3299.586206] kvm_dev_ioctl+0x163/0x1620 [ 3299.590174] ? kvm_put_kvm+0xaa0/0xaa0 [ 3299.594055] ? kvm_put_kvm+0xaa0/0xaa0 [ 3299.597933] do_vfs_ioctl+0x7ae/0x1060 [ 3299.601823] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3299.606565] ? lock_downgrade+0x740/0x740 [ 3299.610699] ? ioctl_preallocate+0x1c0/0x1c0 [ 3299.615106] ? __fget+0x237/0x370 [ 3299.618549] ? security_file_ioctl+0x89/0xb0 [ 3299.622944] SyS_ioctl+0x8f/0xc0 [ 3299.626294] ? do_vfs_ioctl+0x1060/0x1060 [ 3299.630429] do_syscall_64+0x1e8/0x640 [ 3299.634300] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3299.639136] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3299.644309] RIP: 0033:0x45a6f9 [ 3299.647483] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3299.655189] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3299.662441] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 3299.669709] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3299.676972] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3299.684232] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3299.708908] warn_alloc_show_mem: 1 callbacks suppressed [ 3299.708918] Mem-Info: [ 3299.723927] active_anon:1344282 inactive_anon:566 isolated_anon:0 [ 3299.723927] active_file:525 inactive_file:1499 isolated_file:48 [ 3299.723927] unevictable:0 dirty:55 writeback:0 unstable:0 [ 3299.723927] slab_reclaimable:17022 slab_unreclaimable:114788 [ 3299.723927] mapped:53783 shmem:7461 pagetables:16471 bounce:0 [ 3299.723927] free:29713 free_pcp:262 free_cma:0 [ 3299.764514] Node 0 active_anon:1997376kB inactive_anon:1328kB active_file:172kB inactive_file:3208kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:211576kB dirty:32kB writeback:0kB shmem:11956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3299.801426] Node 1 active_anon:3379752kB inactive_anon:936kB active_file:1908kB inactive_file:2968kB unevictable:0kB isolated(anon):0kB isolated(file):192kB mapped:3556kB dirty:188kB writeback:0kB shmem:17888kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3299.840872] Node 0 DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3299.876914] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3299.883040] Node 0 DMA32 free:36628kB min:36380kB low:45472kB high:54564kB active_anon:1992828kB inactive_anon:1328kB active_file:172kB inactive_file:3208kB unevictable:0kB writepending:32kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12192kB pagetables:28320kB bounce:0kB free_pcp:384kB local_pcp:256kB free_cma:0kB [ 3299.921156] lowmem_reserve[]: 0 0 0 0 0 [ 3299.925203] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3299.956605] lowmem_reserve[]: 0 0 0 0 0 [ 3299.960719] Node 1 Normal free:70120kB min:53508kB low:66884kB high:80260kB active_anon:3379752kB inactive_anon:936kB active_file:2068kB inactive_file:2972kB unevictable:0kB writepending:188kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11232kB pagetables:37564kB bounce:0kB free_pcp:884kB local_pcp:168kB free_cma:0kB [ 3299.998033] lowmem_reserve[]: 0 0 0 0 0 [ 3300.004286] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3300.027885] Node 0 DMA32: 957*4kB (UME) 2172*8kB (UME) 960*16kB (U) 2*32kB (UM) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 36628kB [ 3300.054752] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3300.068540] Node 1 Normal: 1296*4kB (UME) 501*8kB (UMEH) 1964*16kB (UMEH) 926*32kB (UE) 2*64kB (U) 4*128kB (H) 1*256kB (H) 1*512kB (H) 0*1024kB 0*2048kB 0*4096kB = 71656kB [ 3300.085083] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3300.094218] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3300.103058] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3300.112246] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3300.121035] 9316 total pagecache pages [ 3300.125021] 0 pages in swap cache [ 3300.128575] Swap cache stats: add 0, delete 0, find 0/0 [ 3300.134081] Free swap = 0kB [ 3300.137875] Total swap = 0kB [ 3300.141041] 1965979 pages RAM [ 3300.144231] 0 pages HighMem/MovableOnly [ 3300.148289] 335858 pages reserved [ 3300.151871] 0 pages cma reserved 20:16:00 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:16:00 executing program 3: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:16:00 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:16:00 executing program 2: mkdir(0x0, 0x0) dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) 20:16:01 executing program 2: mkdir(0x0, 0x0) dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) [ 3303.055850] 9pnet: Insufficient options for proto=fd [ 3303.066282] syz-executor.2: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3303.080854] syz-executor.2 cpuset=syz2 mems_allowed=0-1 [ 3303.086541] CPU: 0 PID: 8675 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3303.094345] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3303.103706] Call Trace: [ 3303.106306] dump_stack+0x142/0x197 [ 3303.109947] warn_alloc.cold+0x96/0x1af [ 3303.113931] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3303.118801] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3303.120276] syz-executor.0: [ 3303.124099] __alloc_pages_slowpath+0x23c6/0x2930 [ 3303.124121] ? save_trace+0x290/0x290 [ 3303.135757] ? warn_alloc+0xf0/0xf0 [ 3303.139400] ? __might_sleep+0x93/0xb0 [ 3303.141552] page allocation failure: order:5 [ 3303.143290] __alloc_pages_nodemask+0x62c/0x7a0 [ 3303.143305] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3303.157535] ? ____cache_alloc_node+0x1be/0x1d0 [ 3303.162084] , mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3303.162211] ? cache_grow_begin+0x335/0x400 [ 3303.162226] cache_grow_begin+0x80/0x400 [ 3303.177086] ? __cpuset_node_allowed+0xff/0x450 [ 3303.181763] fallback_alloc+0x1fd/0x2c0 [ 3303.183114] syz-executor.0 cpuset= [ 3303.185742] ____cache_alloc_node+0x1be/0x1d0 [ 3303.185756] kmem_cache_alloc_trace+0x213/0x790 [ 3303.198432] ? debug_smp_processor_id+0x1c/0x20 [ 3303.202249] syz0 [ 3303.203109] ? perf_trace_lock+0x109/0x500 [ 3303.204273] mems_allowed=0-1 [ 3303.205099] kvm_dev_ioctl+0x163/0x1620 [ 3303.216378] ? kvm_put_kvm+0xaa0/0xaa0 [ 3303.220276] ? kvm_put_kvm+0xaa0/0xaa0 [ 3303.224166] do_vfs_ioctl+0x7ae/0x1060 [ 3303.228055] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3303.232813] ? lock_downgrade+0x740/0x740 [ 3303.236965] ? ioctl_preallocate+0x1c0/0x1c0 [ 3303.241382] ? __fget+0x237/0x370 [ 3303.244858] ? security_file_ioctl+0x89/0xb0 [ 3303.249270] SyS_ioctl+0x8f/0xc0 [ 3303.252743] ? do_vfs_ioctl+0x1060/0x1060 [ 3303.256898] do_syscall_64+0x1e8/0x640 [ 3303.260788] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3303.265638] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3303.270820] RIP: 0033:0x45a6f9 [ 3303.273999] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3303.281700] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3303.288969] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 3303.296240] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3303.303502] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3303.310765] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3303.319167] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3303.328291] warn_alloc_show_mem: 1 callbacks suppressed [ 3303.328295] Mem-Info: [ 3303.330934] CPU: 1 PID: 8671 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3303.342679] active_anon:1344294 inactive_anon:564 isolated_anon:0 [ 3303.342679] active_file:539 inactive_file:1202 isolated_file:32 [ 3303.342679] unevictable:0 dirty:61 writeback:0 unstable:0 [ 3303.342679] slab_reclaimable:17004 slab_unreclaimable:114860 [ 3303.342679] mapped:53591 shmem:7461 pagetables:16511 bounce:0 [ 3303.342679] free:29611 free_pcp:223 free_cma:0 [ 3303.345456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3303.345461] Call Trace: [ 3303.345481] dump_stack+0x142/0x197 [ 3303.345501] warn_alloc.cold+0x96/0x1af [ 3303.345522] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3303.380806] Node 0 active_anon:1997352kB inactive_anon:1328kB active_file:564kB inactive_file:2956kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:211760kB dirty:32kB writeback:0kB shmem:11956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3303.388649] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3303.388664] __alloc_pages_slowpath+0x23c6/0x2930 [ 3303.392407] Node 1 active_anon:3379824kB inactive_anon:928kB active_file:1592kB inactive_file:2052kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:2804kB dirty:212kB writeback:0kB shmem:17888kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3303.394865] ? save_trace+0x290/0x290 [ 3303.394887] ? warn_alloc+0xf0/0xf0 [ 3303.394911] ? __might_sleep+0x93/0xb0 [ 3303.394923] __alloc_pages_nodemask+0x62c/0x7a0 [ 3303.394937] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3303.394949] ? ____cache_alloc_node+0x1be/0x1d0 [ 3303.394959] ? cache_grow_begin+0x335/0x400 [ 3303.394973] cache_grow_begin+0x80/0x400 [ 3303.394983] ? __cpuset_node_allowed+0xff/0x450 [ 3303.394994] fallback_alloc+0x1fd/0x2c0 [ 3303.395010] ____cache_alloc_node+0x1be/0x1d0 [ 3303.395024] kmem_cache_alloc_trace+0x213/0x790 [ 3303.395035] ? debug_smp_processor_id+0x1c/0x20 [ 3303.395046] ? perf_trace_lock+0x109/0x500 [ 3303.410823] Node 0 [ 3303.431958] kvm_dev_ioctl+0x163/0x1620 [ 3303.431980] ? kvm_put_kvm+0xaa0/0xaa0 [ 3303.431999] ? kvm_put_kvm+0xaa0/0xaa0 [ 3303.432012] do_vfs_ioctl+0x7ae/0x1060 [ 3303.432027] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3303.432039] ? lock_downgrade+0x740/0x740 [ 3303.432049] ? ioctl_preallocate+0x1c0/0x1c0 [ 3303.432062] ? __fget+0x237/0x370 [ 3303.432078] ? security_file_ioctl+0x89/0xb0 [ 3303.432091] SyS_ioctl+0x8f/0xc0 [ 3303.432100] ? do_vfs_ioctl+0x1060/0x1060 [ 3303.432113] do_syscall_64+0x1e8/0x640 [ 3303.432123] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3303.432140] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3303.432150] RIP: 0033:0x45a6f9 [ 3303.432155] RSP: 002b:00007f0635329c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3303.432167] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3303.432173] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3303.432178] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 3303.432184] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063532a6d4 [ 3303.432193] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3303.438432] DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3303.448390] syz-executor.4 cpuset= [ 3303.481397] lowmem_reserve[]: [ 3303.519169] syz4 [ 3303.538915] 0 [ 3303.591130] mems_allowed=0-1 [ 3303.594894] 2569 [ 3303.607471] CPU: 1 PID: 8670 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3303.612593] 2569 [ 3303.619011] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3303.619016] Call Trace: [ 3303.619035] dump_stack+0x142/0x197 [ 3303.619055] warn_alloc.cold+0x96/0x1af [ 3303.619066] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3303.619087] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3303.627705] 2569 [ 3303.633746] __alloc_pages_slowpath+0x23c6/0x2930 [ 3303.633773] ? save_trace+0x290/0x290 [ 3303.633793] ? warn_alloc+0xf0/0xf0 [ 3303.633818] ? __might_sleep+0x93/0xb0 [ 3303.633830] __alloc_pages_nodemask+0x62c/0x7a0 [ 3303.633844] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3303.641489] 2569 [ 3303.666882] ? ____cache_alloc_node+0x1be/0x1d0 [ 3303.666894] ? cache_grow_begin+0x335/0x400 [ 3303.666910] cache_grow_begin+0x80/0x400 [ 3303.666924] ? __cpuset_node_allowed+0xff/0x450 [ 3303.666942] fallback_alloc+0x1fd/0x2c0 [ 3303.666956] ____cache_alloc_node+0x1be/0x1d0 [ 3303.666968] kmem_cache_alloc_trace+0x213/0x790 [ 3303.666978] ? debug_smp_processor_id+0x1c/0x20 [ 3303.666988] ? perf_trace_lock+0x109/0x500 [ 3303.667007] kvm_dev_ioctl+0x163/0x1620 [ 3303.667022] ? kvm_put_kvm+0xaa0/0xaa0 [ 3303.667038] ? kvm_put_kvm+0xaa0/0xaa0 [ 3303.667050] do_vfs_ioctl+0x7ae/0x1060 [ 3303.667063] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3303.667071] ? lock_downgrade+0x740/0x740 [ 3303.667081] ? ioctl_preallocate+0x1c0/0x1c0 [ 3303.667094] ? __fget+0x237/0x370 [ 3303.667111] ? security_file_ioctl+0x89/0xb0 [ 3303.667125] SyS_ioctl+0x8f/0xc0 [ 3303.667134] ? do_vfs_ioctl+0x1060/0x1060 [ 3303.667149] do_syscall_64+0x1e8/0x640 [ 3303.673773] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3303.673795] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3303.673806] RIP: 0033:0x45a6f9 [ 3303.673812] RSP: 002b:00007f2bca431c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3303.673825] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3303.675905] Node 0 [ 3303.677561] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 3303.677568] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 3303.677574] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4326d4 [ 3303.677581] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3303.902723] DMA32 free:36880kB min:36380kB low:45472kB high:54564kB active_anon:1992804kB inactive_anon:1328kB active_file:564kB inactive_file:2956kB unevictable:0kB writepending:32kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12192kB pagetables:28304kB bounce:0kB free_pcp:4kB local_pcp:0kB free_cma:0kB [ 3303.931985] lowmem_reserve[]: 0 0 0 0 0 [ 3303.936231] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3303.962163] lowmem_reserve[]: 0 0 0 0 0 [ 3303.967030] Node 1 Normal free:70072kB min:53508kB low:66884kB high:80260kB active_anon:3379824kB inactive_anon:928kB active_file:2400kB inactive_file:2472kB unevictable:0kB writepending:212kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11232kB pagetables:37740kB bounce:0kB free_pcp:1024kB local_pcp:236kB free_cma:0kB [ 3303.998640] lowmem_reserve[]: 0 0 0 0 0 [ 3304.008632] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3304.032026] Node 0 DMA32: 995*4kB (UME) 2167*8kB (UME) 968*16kB (UE) 4*32kB (UME) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 36932kB [ 3304.053173] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3304.067151] Node 1 Normal: 1386*4kB (UME) 431*8kB (UMEH) 2000*16kB (UMEH) 932*32kB (UE) 0*64kB 4*128kB (H) 1*256kB (H) 1*512kB (H) 0*1024kB 0*2048kB 0*4096kB = 72096kB [ 3304.089892] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3304.098803] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3304.114331] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3304.125222] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3304.134535] 9048 total pagecache pages [ 3304.138528] 0 pages in swap cache [ 3304.142154] Swap cache stats: add 0, delete 0, find 0/0 [ 3304.147657] Free swap = 0kB [ 3304.150851] Total swap = 0kB [ 3304.153867] 1965979 pages RAM [ 3304.157095] 0 pages HighMem/MovableOnly [ 3304.161307] 335858 pages reserved [ 3304.164870] 0 pages cma reserved 20:16:06 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:16:06 executing program 2: mkdir(0x0, 0x0) dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 20:16:06 executing program 3: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:16:06 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240), 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, 0x0) [ 3308.502666] 9pnet: Insufficient options for proto=fd [ 3308.627942] 9p: Unknown access argument  [ 3308.688696] syz-executor.0: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3308.707959] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 3308.713683] CPU: 0 PID: 8686 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3308.721486] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3308.730846] Call Trace: [ 3308.733427] dump_stack+0x142/0x197 [ 3308.737048] warn_alloc.cold+0x96/0x1af [ 3308.741006] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3308.745855] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3308.751136] __alloc_pages_slowpath+0x23c6/0x2930 [ 3308.755975] ? save_trace+0x290/0x290 [ 3308.759768] ? warn_alloc+0xf0/0xf0 [ 3308.763393] ? __might_sleep+0x93/0xb0 [ 3308.767270] __alloc_pages_nodemask+0x62c/0x7a0 [ 3308.771943] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3308.776948] ? ____cache_alloc_node+0x1be/0x1d0 [ 3308.781605] ? cache_grow_begin+0x335/0x400 [ 3308.785922] cache_grow_begin+0x80/0x400 [ 3308.789976] ? __cpuset_node_allowed+0xff/0x450 [ 3308.794634] fallback_alloc+0x1fd/0x2c0 [ 3308.798624] ____cache_alloc_node+0x1be/0x1d0 [ 3308.803131] kmem_cache_alloc_trace+0x213/0x790 [ 3308.807801] ? debug_smp_processor_id+0x1c/0x20 [ 3308.812462] ? perf_trace_lock+0x109/0x500 [ 3308.816692] kvm_dev_ioctl+0x163/0x1620 [ 3308.820661] ? kvm_put_kvm+0xaa0/0xaa0 [ 3308.824539] ? kvm_put_kvm+0xaa0/0xaa0 [ 3308.828413] do_vfs_ioctl+0x7ae/0x1060 [ 3308.832290] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3308.837032] ? lock_downgrade+0x740/0x740 [ 3308.841288] ? ioctl_preallocate+0x1c0/0x1c0 [ 3308.845709] ? __fget+0x237/0x370 [ 3308.849167] ? security_file_ioctl+0x89/0xb0 [ 3308.853576] SyS_ioctl+0x8f/0xc0 [ 3308.856936] ? do_vfs_ioctl+0x1060/0x1060 [ 3308.861079] do_syscall_64+0x1e8/0x640 [ 3308.864956] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3308.869793] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3308.874991] RIP: 0033:0x45a6f9 [ 3308.878183] RSP: 002b:00007f063534ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3308.885885] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3308.893231] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3308.900495] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3308.907756] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063534b6d4 [ 3308.915011] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3309.044978] warn_alloc_show_mem: 2 callbacks suppressed [ 3309.044982] Mem-Info: [ 3309.052988] active_anon:1344257 inactive_anon:562 isolated_anon:0 [ 3309.052988] active_file:642 inactive_file:891 isolated_file:32 [ 3309.052988] unevictable:0 dirty:48 writeback:25 unstable:0 [ 3309.052988] slab_reclaimable:17000 slab_unreclaimable:115015 [ 3309.052988] mapped:53400 shmem:7461 pagetables:16464 bounce:0 [ 3309.052988] free:29741 free_pcp:444 free_cma:0 [ 3309.091438] Node 0 active_anon:1997392kB inactive_anon:1332kB active_file:100kB inactive_file:48kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:209000kB dirty:12kB writeback:8kB shmem:11964kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3309.119808] Node 1 active_anon:3379656kB inactive_anon:916kB active_file:2476kB inactive_file:2520kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:3548kB dirty:156kB writeback:108kB shmem:17880kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3309.148122] Node 0 DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3309.183414] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3309.195133] Node 0 DMA32 free:39500kB min:36380kB low:45472kB high:54564kB active_anon:1992844kB inactive_anon:1332kB active_file:20kB inactive_file:24kB unevictable:0kB writepending:20kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12192kB pagetables:28304kB bounce:0kB free_pcp:972kB local_pcp:392kB free_cma:0kB [ 3309.252610] lowmem_reserve[]: 0 0 0 0 0 [ 3309.256725] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3309.282648] lowmem_reserve[]: 0 0 0 0 0 [ 3309.286690] Node 1 Normal free:70196kB min:53508kB low:66884kB high:80260kB active_anon:3379656kB inactive_anon:916kB active_file:2476kB inactive_file:2520kB unevictable:0kB writepending:264kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11200kB pagetables:37552kB bounce:0kB free_pcp:804kB local_pcp:688kB free_cma:0kB [ 3309.316472] lowmem_reserve[]: 0 0 0 0 0 [ 3309.320628] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3309.337088] Node 0 DMA32: 1607*4kB (UM) 2180*8kB (UME) 967*16kB (UM) 5*32kB (UM) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39500kB [ 3309.351722] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3309.365604] Node 1 Normal: 1057*4kB (U) 392*8kB (UEH) 1979*16kB (UEH) 925*32kB (UE) 0*64kB 4*128kB (H) 1*256kB (H) 1*512kB (H) 0*1024kB 0*2048kB 0*4096kB = 69908kB [ 3309.387656] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3309.397668] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3309.413445] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3309.429213] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3309.447487] 8721 total pagecache pages [ 3309.451559] 0 pages in swap cache [ 3309.455079] Swap cache stats: add 0, delete 0, find 0/0 [ 3309.468568] Free swap = 0kB [ 3309.471747] Total swap = 0kB [ 3309.474835] 1965979 pages RAM [ 3309.478573] 0 pages HighMem/MovableOnly [ 3309.489121] 335858 pages reserved [ 3309.492889] 0 pages cma reserved 20:16:10 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240), 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, 0x0) 20:16:10 executing program 3: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:16:10 executing program 2: mkdir(0x0, 0x0) dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) 20:16:10 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3312.897066] 9p: Unknown access argument  [ 3312.929538] 9pnet: Insufficient options for proto=fd 20:16:11 executing program 3: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) [ 3313.007079] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3313.037932] 9p: Unknown access argument  [ 3313.042402] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 3313.057917] CPU: 1 PID: 8701 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3313.065926] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3313.075283] Call Trace: [ 3313.077880] dump_stack+0x142/0x197 [ 3313.081517] warn_alloc.cold+0x96/0x1af [ 3313.085498] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3313.090362] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3313.095651] __alloc_pages_slowpath+0x23c6/0x2930 [ 3313.100508] ? save_trace+0x290/0x290 [ 3313.104318] ? warn_alloc+0xf0/0xf0 [ 3313.108135] ? __might_sleep+0x93/0xb0 [ 3313.112033] __alloc_pages_nodemask+0x62c/0x7a0 [ 3313.116714] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3313.121740] ? ____cache_alloc_node+0x1be/0x1d0 [ 3313.126415] ? cache_grow_begin+0x335/0x400 [ 3313.130743] cache_grow_begin+0x80/0x400 [ 3313.134811] ? __cpuset_node_allowed+0xff/0x450 [ 3313.139486] fallback_alloc+0x1fd/0x2c0 [ 3313.143467] ____cache_alloc_node+0x1be/0x1d0 [ 3313.147971] kmem_cache_alloc_trace+0x213/0x790 [ 3313.152646] ? debug_smp_processor_id+0x1c/0x20 [ 3313.157319] ? perf_trace_lock+0x109/0x500 [ 3313.161575] kvm_dev_ioctl+0x163/0x1620 [ 3313.165567] ? kvm_put_kvm+0xaa0/0xaa0 [ 3313.169467] ? kvm_put_kvm+0xaa0/0xaa0 [ 3313.173364] do_vfs_ioctl+0x7ae/0x1060 [ 3313.177276] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3313.182035] ? lock_downgrade+0x740/0x740 [ 3313.186197] ? ioctl_preallocate+0x1c0/0x1c0 [ 3313.190612] ? __fget+0x237/0x370 [ 3313.194060] ? security_file_ioctl+0x89/0xb0 [ 3313.198461] SyS_ioctl+0x8f/0xc0 [ 3313.201822] ? do_vfs_ioctl+0x1060/0x1060 [ 3313.205965] do_syscall_64+0x1e8/0x640 [ 3313.209861] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3313.214715] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3313.219927] RIP: 0033:0x45a6f9 [ 3313.223112] RSP: 002b:00007f2bca452c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3313.230807] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3313.238067] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 3313.245330] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3313.252592] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4536d4 [ 3313.259847] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3313.519513] syz-executor.2: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3313.531234] syz-executor.2 cpuset=syz2 mems_allowed=0-1 [ 3313.538726] CPU: 1 PID: 8700 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3313.546548] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3313.555913] Call Trace: [ 3313.558521] dump_stack+0x142/0x197 [ 3313.562144] warn_alloc.cold+0x96/0x1af [ 3313.566110] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3313.570957] ? __alloc_pages_direct_compact+0x290/0x380 [ 3313.576309] __alloc_pages_slowpath+0x23c6/0x2930 [ 3313.581148] ? save_trace+0x290/0x290 [ 3313.584941] ? warn_alloc+0xf0/0xf0 [ 3313.588566] ? __might_sleep+0x93/0xb0 [ 3313.592442] __alloc_pages_nodemask+0x62c/0x7a0 [ 3313.597101] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3313.602226] ? ____cache_alloc_node+0x1be/0x1d0 [ 3313.606890] ? cache_grow_begin+0x335/0x400 [ 3313.611211] cache_grow_begin+0x80/0x400 [ 3313.615271] ? __cpuset_node_allowed+0xff/0x450 [ 3313.619929] fallback_alloc+0x1fd/0x2c0 [ 3313.623899] ____cache_alloc_node+0x1be/0x1d0 [ 3313.628408] kmem_cache_alloc_trace+0x213/0x790 [ 3313.633067] ? debug_smp_processor_id+0x1c/0x20 [ 3313.637726] ? perf_trace_lock+0x109/0x500 [ 3313.641954] kvm_dev_ioctl+0x163/0x1620 [ 3313.645917] ? kvm_put_kvm+0xaa0/0xaa0 [ 3313.649794] ? kvm_put_kvm+0xaa0/0xaa0 [ 3313.653666] do_vfs_ioctl+0x7ae/0x1060 [ 3313.657538] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3313.662277] ? lock_downgrade+0x740/0x740 [ 3313.666423] ? ioctl_preallocate+0x1c0/0x1c0 [ 3313.670819] ? __fget+0x237/0x370 [ 3313.674259] ? security_file_ioctl+0x89/0xb0 [ 3313.678654] SyS_ioctl+0x8f/0xc0 [ 3313.682013] ? do_vfs_ioctl+0x1060/0x1060 [ 3313.686149] do_syscall_64+0x1e8/0x640 [ 3313.690032] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3313.694866] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3313.700042] RIP: 0033:0x45a6f9 [ 3313.703215] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3313.710908] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3313.718159] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 3313.725412] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3313.732666] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3313.739928] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3313.754366] Mem-Info: [ 3313.756981] active_anon:1344295 inactive_anon:566 isolated_anon:0 [ 3313.756981] active_file:652 inactive_file:1725 isolated_file:76 [ 3313.756981] unevictable:0 dirty:69 writeback:0 unstable:0 [ 3313.756981] slab_reclaimable:16973 slab_unreclaimable:115007 [ 3313.756981] mapped:54010 shmem:7461 pagetables:16457 bounce:0 [ 3313.756981] free:29238 free_pcp:34 free_cma:0 [ 3313.791461] Node 0 active_anon:1997404kB inactive_anon:1344kB active_file:408kB inactive_file:3152kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:211808kB dirty:28kB writeback:0kB shmem:11972kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3313.819908] Node 1 active_anon:3379776kB inactive_anon:920kB active_file:2300kB inactive_file:4648kB unevictable:0kB isolated(anon):0kB isolated(file):204kB mapped:4532kB dirty:248kB writeback:0kB shmem:17872kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3313.849246] Node 0 DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3313.875853] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3313.882200] Node 0 DMA32 free:36824kB min:36380kB low:45472kB high:54564kB active_anon:1992856kB inactive_anon:1344kB active_file:408kB inactive_file:3152kB unevictable:0kB writepending:28kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12192kB pagetables:28256kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3313.912349] lowmem_reserve[]: 0 0 0 0 0 [ 3313.916945] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3313.944431] lowmem_reserve[]: 0 0 0 0 0 [ 3313.948534] Node 1 Normal free:68112kB min:53508kB low:66884kB high:80260kB active_anon:3379776kB inactive_anon:920kB active_file:2056kB inactive_file:5008kB unevictable:0kB writepending:248kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11104kB pagetables:37572kB bounce:0kB free_pcp:92kB local_pcp:0kB free_cma:0kB [ 3313.988024] lowmem_reserve[]: 0 0 0 0 0 [ 3313.992740] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB 20:16:12 executing program 3: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) [ 3314.012360] Node 0 DMA32: 1005*4kB (UME) 2159*8kB (UME) 966*16kB (UE) 4*32kB (UE) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 36876kB [ 3314.026197] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3314.037572] Node 1 Normal: 131*4kB (U) 372*8kB (UEH) 1990*16kB (UH) 944*32kB (UE) 0*64kB 4*128kB (H) 1*256kB (H) 1*512kB (H) 0*1024kB 0*2048kB 0*4096kB = 66828kB [ 3314.053088] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3314.062387] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3314.072379] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3314.081742] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3314.090523] 10572 total pagecache pages [ 3314.094556] 0 pages in swap cache [ 3314.098057] Swap cache stats: add 0, delete 0, find 0/0 [ 3314.103938] Free swap = 0kB [ 3314.107025] Total swap = 0kB [ 3314.110421] 1965979 pages RAM [ 3314.113584] 0 pages HighMem/MovableOnly [ 3314.117662] 335858 pages reserved [ 3314.121547] 0 pages cma reserved [ 3314.145768] syz-executor.0: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3314.158744] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 3314.165195] CPU: 1 PID: 8699 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3314.173174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3314.182538] Call Trace: [ 3314.185139] dump_stack+0x142/0x197 [ 3314.188780] warn_alloc.cold+0x96/0x1af [ 3314.192761] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3314.197621] ? __alloc_pages_direct_compact+0x290/0x380 [ 3314.202996] __alloc_pages_slowpath+0x23c6/0x2930 [ 3314.207860] ? save_trace+0x290/0x290 [ 3314.211757] ? warn_alloc+0xf0/0xf0 [ 3314.211783] ? __might_sleep+0x93/0xb0 [ 3314.211796] __alloc_pages_nodemask+0x62c/0x7a0 [ 3314.219289] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3314.228968] cache_grow_begin+0x80/0x400 [ 3314.233040] ? __cpuset_node_allowed+0xff/0x450 [ 3314.237725] fallback_alloc+0x1fd/0x2c0 [ 3314.241689] ____cache_alloc_node+0x1be/0x1d0 [ 3314.246240] kmem_cache_alloc_trace+0x213/0x790 [ 3314.250902] ? debug_smp_processor_id+0x1c/0x20 [ 3314.255669] ? perf_trace_lock+0x109/0x500 [ 3314.259903] kvm_dev_ioctl+0x163/0x1620 [ 3314.263879] ? kvm_put_kvm+0xaa0/0xaa0 [ 3314.267756] ? kvm_put_kvm+0xaa0/0xaa0 [ 3314.271683] do_vfs_ioctl+0x7ae/0x1060 [ 3314.275566] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3314.280309] ? lock_downgrade+0x740/0x740 [ 3314.284443] ? ioctl_preallocate+0x1c0/0x1c0 [ 3314.288842] ? __fget+0x237/0x370 [ 3314.292285] ? security_file_ioctl+0x89/0xb0 [ 3314.296677] SyS_ioctl+0x8f/0xc0 [ 3314.300032] ? do_vfs_ioctl+0x1060/0x1060 [ 3314.304173] do_syscall_64+0x1e8/0x640 [ 3314.308063] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3314.312953] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3314.318126] RIP: 0033:0x45a6f9 [ 3314.321297] RSP: 002b:00007f063534ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3314.329013] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3314.336280] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3314.343535] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3314.350790] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063534b6d4 [ 3314.358044] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3317.929294] 9p: Unknown access argument  20:16:16 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:16:16 executing program 3: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r2) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:16:16 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240), 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, 0x0) [ 3318.541621] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 3318.552625] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 3318.558165] CPU: 1 PID: 8717 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3318.565974] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3318.575338] Call Trace: [ 3318.577936] dump_stack+0x142/0x197 [ 3318.581564] warn_alloc.cold+0x96/0x1af [ 3318.585522] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3318.590350] ? wait_for_completion+0x420/0x420 [ 3318.594955] __alloc_pages_slowpath+0x23c6/0x2930 [ 3318.599791] ? warn_alloc+0xf0/0xf0 [ 3318.603427] ? __might_sleep+0x93/0xb0 [ 3318.607307] __alloc_pages_nodemask+0x62c/0x7a0 [ 3318.612058] ? rcu_read_lock_sched_held+0x110/0x130 [ 3318.617079] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3318.622101] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 3318.626849] alloc_pages_current+0xec/0x1e0 [ 3318.631375] kvm_mmu_create+0xdf/0x1e0 [ 3318.635250] kvm_arch_vcpu_init+0x29c/0x8e0 [ 3318.639574] kvm_vcpu_init+0x272/0x360 [ 3318.643448] vmx_create_vcpu+0xfc/0x2aa0 [ 3318.647508] ? mutex_trylock+0x1c0/0x1c0 [ 3318.651568] ? handle_rdmsr+0x6e0/0x6e0 [ 3318.655522] ? wait_for_completion+0x420/0x420 [ 3318.660088] kvm_arch_vcpu_create+0x8c/0xc0 [ 3318.664409] kvm_vm_ioctl+0x501/0x1600 [ 3318.668291] ? __lock_acquire+0x5f7/0x4620 [ 3318.672587] ? kvm_vcpu_release+0xa0/0xa0 [ 3318.676722] ? debug_smp_processor_id+0x1c/0x20 [ 3318.681381] ? perf_trace_lock+0x109/0x500 [ 3318.685603] ? check_preemption_disabled+0x3c/0x250 [ 3318.690629] ? debug_smp_processor_id+0x1c/0x20 [ 3318.695302] ? perf_trace_lock+0x109/0x500 [ 3318.699540] ? save_trace+0x290/0x290 [ 3318.703329] ? SOFTIRQ_verbose+0x10/0x10 [ 3318.707502] ? __fget+0x210/0x370 [ 3318.710939] ? find_held_lock+0x35/0x130 [ 3318.714997] ? __fget+0x210/0x370 [ 3318.718461] ? kvm_vcpu_release+0xa0/0xa0 [ 3318.722596] do_vfs_ioctl+0x7ae/0x1060 [ 3318.726466] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3318.731214] ? lock_downgrade+0x740/0x740 [ 3318.735352] ? ioctl_preallocate+0x1c0/0x1c0 [ 3318.739747] ? __fget+0x237/0x370 [ 3318.743187] ? security_file_ioctl+0x89/0xb0 [ 3318.747578] SyS_ioctl+0x8f/0xc0 [ 3318.750925] ? do_vfs_ioctl+0x1060/0x1060 [ 3318.755056] do_syscall_64+0x1e8/0x640 [ 3318.758925] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3318.763757] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3318.768928] RIP: 0033:0x45a6f9 [ 3318.772113] RSP: 002b:00007f2bca452c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3318.779809] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3318.788493] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 3318.795758] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3318.803024] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4536d4 [ 3318.810298] R13: 00000000004c3abc R14: 00000000004d90d8 R15: 00000000ffffffff [ 3318.819157] warn_alloc_show_mem: 2 callbacks suppressed [ 3318.819160] Mem-Info: [ 3318.819814] 9pnet: Insufficient options for proto=fd [ 3318.824972] active_anon:1344243 inactive_anon:567 isolated_anon:0 [ 3318.824972] active_file:618 inactive_file:2656 isolated_file:0 [ 3318.824972] unevictable:0 dirty:34 writeback:0 unstable:0 [ 3318.824972] slab_reclaimable:16954 slab_unreclaimable:115106 [ 3318.824972] mapped:54461 shmem:7461 pagetables:16478 bounce:0 [ 3318.824972] free:28237 free_pcp:109 free_cma:0 [ 3318.866766] Node 0 active_anon:1997440kB inactive_anon:1336kB active_file:188kB inactive_file:264kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:209032kB dirty:8kB writeback:0kB shmem:11964kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3318.895091] Node 1 active_anon:3379532kB inactive_anon:932kB active_file:2372kB inactive_file:9084kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:8312kB dirty:128kB writeback:0kB shmem:17880kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3318.937901] 9p: Unknown access argument  [ 3318.983050] Node 0 DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3319.009674] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3319.015866] Node 0 DMA32 free:38284kB min:36380kB low:45472kB high:54564kB active_anon:1992892kB inactive_anon:1336kB active_file:200kB inactive_file:572kB unevictable:0kB writepending:8kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12192kB pagetables:28496kB bounce:0kB free_pcp:968kB local_pcp:316kB free_cma:0kB [ 3319.047436] lowmem_reserve[]: 0 0 0 0 0 [ 3319.051563] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3319.077861] lowmem_reserve[]: 0 0 0 0 0 [ 3319.081976] Node 1 Normal free:66096kB min:53508kB low:66884kB high:80260kB active_anon:3379532kB inactive_anon:932kB active_file:3884kB inactive_file:6144kB unevictable:0kB writepending:128kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11360kB pagetables:37416kB bounce:0kB free_pcp:1296kB local_pcp:628kB free_cma:0kB [ 3319.111952] lowmem_reserve[]: 0 0 0 0 0 [ 3319.116026] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3319.132615] Node 0 DMA32: 1460*4kB (UM) 2161*8kB (UME) 966*16kB (UE) 3*32kB (UE) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 38680kB [ 3319.146310] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3319.157379] Node 1 Normal: 796*4kB (UME) 344*8kB (UMEH) 1983*16kB (UMEH) 941*32kB (UE) 0*64kB 4*128kB (H) 1*256kB (H) 1*512kB (H) 0*1024kB 0*2048kB 0*4096kB = 69056kB [ 3319.172901] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3319.186292] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3319.206155] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3319.215230] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3319.224773] 9204 total pagecache pages [ 3319.228765] 0 pages in swap cache [ 3319.232319] Swap cache stats: add 0, delete 0, find 0/0 [ 3319.237679] Free swap = 0kB [ 3319.241363] Total swap = 0kB [ 3319.244397] 1965979 pages RAM [ 3319.247496] 0 pages HighMem/MovableOnly [ 3319.251789] 335858 pages reserved [ 3319.255276] 0 pages cma reserved 20:16:20 executing program 2: 20:16:20 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:16:20 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1]) 20:16:20 executing program 3: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r2) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:16:20 executing program 2: [ 3322.633562] 9pnet: Insufficient options for proto=fd [ 3322.662472] 9p: Unknown access argument  [ 3322.766092] syz-executor.0: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3322.807206] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 3322.833322] CPU: 1 PID: 8736 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3322.841155] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3322.850519] Call Trace: [ 3322.853118] dump_stack+0x142/0x197 [ 3322.856755] warn_alloc.cold+0x96/0x1af [ 3322.860747] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3322.865609] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3322.870895] __alloc_pages_slowpath+0x23c6/0x2930 [ 3322.875752] ? save_trace+0x290/0x290 [ 3322.879564] ? warn_alloc+0xf0/0xf0 [ 3322.883209] ? __might_sleep+0x93/0xb0 [ 3322.887191] __alloc_pages_nodemask+0x62c/0x7a0 [ 3322.891873] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3322.896893] ? ____cache_alloc_node+0x1be/0x1d0 [ 3322.901563] ? cache_grow_begin+0x335/0x400 [ 3322.905889] cache_grow_begin+0x80/0x400 [ 3322.909937] ? __cpuset_node_allowed+0xff/0x450 [ 3322.914597] fallback_alloc+0x1fd/0x2c0 [ 3322.918562] ____cache_alloc_node+0x1be/0x1d0 [ 3322.923050] kmem_cache_alloc_trace+0x213/0x790 [ 3322.927705] ? debug_smp_processor_id+0x1c/0x20 [ 3322.932361] ? perf_trace_lock+0x109/0x500 [ 3322.936591] kvm_dev_ioctl+0x163/0x1620 [ 3322.940571] ? kvm_put_kvm+0xaa0/0xaa0 [ 3322.944448] ? kvm_put_kvm+0xaa0/0xaa0 [ 3322.948323] do_vfs_ioctl+0x7ae/0x1060 [ 3322.952200] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3322.956939] ? lock_downgrade+0x740/0x740 [ 3322.961075] ? ioctl_preallocate+0x1c0/0x1c0 [ 3322.965474] ? __fget+0x237/0x370 [ 3322.968922] ? security_file_ioctl+0x89/0xb0 [ 3322.973320] SyS_ioctl+0x8f/0xc0 [ 3322.976670] ? do_vfs_ioctl+0x1060/0x1060 [ 3322.980805] do_syscall_64+0x1e8/0x640 [ 3322.984675] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3322.989508] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3322.994683] RIP: 0033:0x45a6f9 [ 3322.997854] RSP: 002b:00007f063534ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3323.005549] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3323.012805] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3323.020493] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3323.027757] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063534b6d4 [ 3323.035011] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3323.206870] Mem-Info: [ 3323.214134] active_anon:1344301 inactive_anon:568 isolated_anon:24 [ 3323.214134] active_file:420 inactive_file:402 isolated_file:35 [ 3323.214134] unevictable:0 dirty:23 writeback:42 unstable:0 [ 3323.214134] slab_reclaimable:16938 slab_unreclaimable:115023 [ 3323.214134] mapped:52909 shmem:7465 pagetables:16476 bounce:0 [ 3323.214134] free:30610 free_pcp:0 free_cma:0 [ 3323.283048] Node 0 active_anon:1997472kB inactive_anon:1348kB active_file:72kB inactive_file:76kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208960kB dirty:20kB writeback:4kB shmem:11976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3323.312238] Node 1 active_anon:3379732kB inactive_anon:924kB active_file:1276kB inactive_file:1336kB unevictable:0kB isolated(anon):48kB isolated(file):52kB mapped:1468kB dirty:72kB writeback:0kB shmem:17884kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3323.340896] Node 0 DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3323.367514] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3323.372806] Node 0 DMA32 free:39840kB min:36380kB low:45472kB high:54564kB active_anon:1992924kB inactive_anon:1348kB active_file:52kB inactive_file:96kB unevictable:0kB writepending:8kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12192kB pagetables:28324kB bounce:0kB free_pcp:48kB local_pcp:0kB free_cma:0kB [ 3323.401894] lowmem_reserve[]: 0 0 0 0 0 [ 3323.405905] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3323.431600] lowmem_reserve[]: 0 0 0 0 0 [ 3323.435623] Node 1 Normal free:73348kB min:53508kB low:66884kB high:80260kB active_anon:3379732kB inactive_anon:924kB active_file:1256kB inactive_file:2084kB unevictable:0kB writepending:48kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11360kB pagetables:37580kB bounce:0kB free_pcp:104kB local_pcp:0kB free_cma:0kB [ 3323.466011] lowmem_reserve[]: 0 0 0 0 0 [ 3323.479370] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3323.496624] Node 0 DMA32: 1662*4kB (UM) 2210*8kB (UME) 977*16kB (UME) 8*32kB (ME) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 40216kB [ 3323.519551] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3323.542943] Node 1 Normal: 1547*4kB (UME) 456*8kB (UME) 1982*16kB (UMH) 968*32kB (UMEH) 5*64kB (UM) 4*128kB (H) 1*256kB (H) 1*512kB (H) 0*1024kB 0*2048kB 0*4096kB = 74124kB [ 3323.577601] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3323.589359] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3323.598944] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3323.607968] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3323.616871] 8043 total pagecache pages [ 3323.620888] 0 pages in swap cache [ 3323.624410] Swap cache stats: add 0, delete 0, find 0/0 [ 3323.629987] Free swap = 0kB [ 3323.633167] Total swap = 0kB [ 3323.636388] 1965979 pages RAM [ 3323.639555] 0 pages HighMem/MovableOnly [ 3323.643773] 335858 pages reserved [ 3323.647292] 0 pages cma reserved 20:16:24 executing program 2: 20:16:25 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1]) 20:16:25 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:16:25 executing program 2: 20:16:25 executing program 3: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r2) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:16:25 executing program 2: [ 3327.026408] 9pnet: Insufficient options for proto=fd 20:16:25 executing program 2: [ 3327.119673] syz-executor.0: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3327.136425] syz-executor.3: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3327.170000] 9p: Unknown access argument  [ 3327.179863] syz-executor.3 cpuset=syz3 mems_allowed=0-1 [ 3327.186513] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 3327.195596] CPU: 1 PID: 8761 Comm: syz-executor.3 Not tainted 4.14.158-syzkaller #0 [ 3327.203425] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3327.212785] Call Trace: [ 3327.215463] dump_stack+0x142/0x197 [ 3327.219101] warn_alloc.cold+0x96/0x1af [ 3327.223299] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3327.228154] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3327.233431] __alloc_pages_slowpath+0x23c6/0x2930 [ 3327.238286] ? save_trace+0x290/0x290 [ 3327.242170] ? warn_alloc+0xf0/0xf0 [ 3327.245816] ? __might_sleep+0x93/0xb0 [ 3327.249708] __alloc_pages_nodemask+0x62c/0x7a0 [ 3327.254378] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3327.259393] ? ____cache_alloc_node+0x1be/0x1d0 [ 3327.264058] ? cache_grow_begin+0x335/0x400 [ 3327.268383] cache_grow_begin+0x80/0x400 [ 3327.272439] ? __cpuset_node_allowed+0xff/0x450 [ 3327.277194] fallback_alloc+0x1fd/0x2c0 [ 3327.281168] ____cache_alloc_node+0x1be/0x1d0 [ 3327.285666] kmem_cache_alloc_trace+0x213/0x790 [ 3327.290337] ? debug_smp_processor_id+0x1c/0x20 [ 3327.295009] ? perf_trace_lock+0x109/0x500 [ 3327.299256] kvm_dev_ioctl+0x163/0x1620 [ 3327.303243] ? kvm_put_kvm+0xaa0/0xaa0 [ 3327.307146] ? kvm_put_kvm+0xaa0/0xaa0 [ 3327.311037] do_vfs_ioctl+0x7ae/0x1060 [ 3327.314933] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3327.319694] ? lock_downgrade+0x740/0x740 [ 3327.323936] ? ioctl_preallocate+0x1c0/0x1c0 [ 3327.328353] ? __fget+0x237/0x370 [ 3327.331829] ? security_file_ioctl+0x89/0xb0 [ 3327.336243] SyS_ioctl+0x8f/0xc0 [ 3327.339604] ? do_vfs_ioctl+0x1060/0x1060 [ 3327.344055] do_syscall_64+0x1e8/0x640 [ 3327.347956] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3327.352829] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3327.358029] RIP: 0033:0x45a6f9 [ 3327.361217] RSP: 002b:00007ff826292c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3327.368940] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3327.376208] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3327.383614] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3327.391031] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff8262936d4 [ 3327.398526] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3327.405822] CPU: 0 PID: 8760 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3327.413653] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3327.423023] Call Trace: [ 3327.425627] dump_stack+0x142/0x197 [ 3327.429276] warn_alloc.cold+0x96/0x1af [ 3327.433263] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3327.438132] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3327.443432] __alloc_pages_slowpath+0x23c6/0x2930 [ 3327.443612] Mem-Info: [ 3327.448290] ? save_trace+0x290/0x290 [ 3327.450748] active_anon:1344280 inactive_anon:565 isolated_anon:12 [ 3327.450748] active_file:1049 inactive_file:1317 isolated_file:59 [ 3327.450748] unevictable:0 dirty:37 writeback:5 unstable:0 [ 3327.450748] slab_reclaimable:16926 slab_unreclaimable:114862 [ 3327.450748] mapped:54340 shmem:7462 pagetables:16485 bounce:0 [ 3327.450748] free:29249 free_pcp:103 free_cma:0 [ 3327.454495] ? warn_alloc+0xf0/0xf0 [ 3327.488730] Node 0 active_anon:1997432kB inactive_anon:1332kB active_file:592kB inactive_file:2564kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:211392kB dirty:28kB writeback:0kB shmem:11960kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3327.492179] ? __might_sleep+0x93/0xb0 [ 3327.492194] __alloc_pages_nodemask+0x62c/0x7a0 [ 3327.520464] Node 1 active_anon:3379688kB inactive_anon:928kB active_file:3604kB inactive_file:2704kB unevictable:0kB isolated(anon):48kB isolated(file):236kB mapped:5968kB dirty:120kB writeback:20kB shmem:17888kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3327.524312] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3327.528960] Node 0 [ 3327.557382] ? ____cache_alloc_node+0x1be/0x1d0 [ 3327.557395] ? cache_grow_begin+0x335/0x400 [ 3327.557408] cache_grow_begin+0x80/0x400 [ 3327.557420] ? __cpuset_node_allowed+0xff/0x450 [ 3327.557431] fallback_alloc+0x1fd/0x2c0 [ 3327.557445] ____cache_alloc_node+0x1be/0x1d0 [ 3327.557457] kmem_cache_alloc_trace+0x213/0x790 [ 3327.557465] ? debug_smp_processor_id+0x1c/0x20 [ 3327.557477] ? perf_trace_lock+0x109/0x500 [ 3327.557497] kvm_dev_ioctl+0x163/0x1620 [ 3327.557514] ? kvm_put_kvm+0xaa0/0xaa0 [ 3327.557530] ? kvm_put_kvm+0xaa0/0xaa0 [ 3327.557542] do_vfs_ioctl+0x7ae/0x1060 [ 3327.557555] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3327.557563] ? lock_downgrade+0x740/0x740 [ 3327.557572] ? ioctl_preallocate+0x1c0/0x1c0 [ 3327.557586] ? __fget+0x237/0x370 [ 3327.557604] ? security_file_ioctl+0x89/0xb0 [ 3327.600219] DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3327.600661] SyS_ioctl+0x8f/0xc0 [ 3327.605108] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3327.605134] Node 0 DMA32 free:36804kB min:36380kB low:45472kB high:54564kB active_anon:1992884kB inactive_anon:1332kB active_file:592kB inactive_file:2564kB unevictable:0kB writepending:28kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12192kB pagetables:28408kB bounce:0kB free_pcp:128kB local_pcp:120kB free_cma:0kB [ 3327.609120] ? do_vfs_ioctl+0x1060/0x1060 [ 3327.630114] lowmem_reserve[]: [ 3327.634201] do_syscall_64+0x1e8/0x640 [ 3327.637629] 0 [ 3327.642030] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3327.642050] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3327.642059] RIP: 0033:0x45a6f9 [ 3327.642064] RSP: 002b:00007f0635329c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3327.642076] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3327.642082] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3327.642088] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 3327.642094] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063532a6d4 [ 3327.642102] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3327.710074] 0 [ 3327.810344] 0 0 0 [ 3327.826951] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3327.893809] lowmem_reserve[]: 0 0 0 0 0 [ 3327.898011] Node 1 Normal free:70744kB min:53508kB low:66884kB high:80260kB active_anon:3379736kB inactive_anon:928kB active_file:3780kB inactive_file:3228kB unevictable:0kB writepending:284kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11200kB pagetables:37544kB bounce:0kB free_pcp:364kB local_pcp:272kB free_cma:0kB [ 3327.928610] lowmem_reserve[]: 0 0 0 0 0 [ 3327.932729] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3327.949264] Node 0 DMA32: 1119*4kB (UME) 2159*8kB (UM) 966*16kB (UE) 2*32kB (E) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 37268kB [ 3327.963754] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3327.974610] Node 1 Normal: 1237*4kB (UME) 305*8kB (UME) 1968*16kB (UMEH) 956*32kB (UEH) 2*64kB (U) 4*128kB (H) 1*256kB (H) 1*512kB (H) 0*1024kB 0*2048kB 0*4096kB = 70876kB [ 3327.991109] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3328.008468] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3328.017561] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3328.033486] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3328.045715] 9543 total pagecache pages [ 3328.049696] 0 pages in swap cache [ 3328.056369] Swap cache stats: add 0, delete 0, find 0/0 [ 3328.065743] Free swap = 0kB [ 3328.068853] Total swap = 0kB [ 3328.075561] 1965979 pages RAM [ 3328.078795] 0 pages HighMem/MovableOnly [ 3328.086984] 335858 pages reserved [ 3328.094388] 0 pages cma reserved 20:16:29 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1]) 20:16:29 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:16:29 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:16:29 executing program 3: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) [ 3331.340461] 9pnet: Insufficient options for proto=fd [ 3331.486893] 9pnet: Insufficient options for proto=fd [ 3331.527905] 9p: Unknown access argument  [ 3331.584111] syz-executor.3: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3331.599442] syz-executor.3 cpuset=syz3 mems_allowed=0-1 [ 3331.608023] syz-executor.0: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3331.627869] CPU: 1 PID: 8777 Comm: syz-executor.3 Not tainted 4.14.158-syzkaller #0 [ 3331.635706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3331.645729] Call Trace: [ 3331.648326] dump_stack+0x142/0x197 [ 3331.651962] warn_alloc.cold+0x96/0x1af [ 3331.655941] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3331.660915] ? __alloc_pages_direct_compact+0x290/0x380 [ 3331.666282] __alloc_pages_slowpath+0x23c6/0x2930 [ 3331.671130] ? save_trace+0x290/0x290 [ 3331.674934] ? warn_alloc+0xf0/0xf0 [ 3331.678565] ? __might_sleep+0x93/0xb0 [ 3331.682448] __alloc_pages_nodemask+0x62c/0x7a0 [ 3331.687135] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3331.692152] ? ____cache_alloc_node+0x1be/0x1d0 [ 3331.696819] ? cache_grow_begin+0x335/0x400 [ 3331.701341] cache_grow_begin+0x80/0x400 [ 3331.705406] ? __cpuset_node_allowed+0xff/0x450 [ 3331.710087] fallback_alloc+0x1fd/0x2c0 [ 3331.714078] ____cache_alloc_node+0x1be/0x1d0 [ 3331.718583] kmem_cache_alloc_trace+0x213/0x790 [ 3331.723255] ? debug_smp_processor_id+0x1c/0x20 [ 3331.727928] ? perf_trace_lock+0x109/0x500 [ 3331.732172] kvm_dev_ioctl+0x163/0x1620 [ 3331.736151] ? kvm_put_kvm+0xaa0/0xaa0 [ 3331.740044] ? kvm_put_kvm+0xaa0/0xaa0 [ 3331.743935] do_vfs_ioctl+0x7ae/0x1060 [ 3331.747909] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3331.752658] ? lock_downgrade+0x740/0x740 [ 3331.756803] ? ioctl_preallocate+0x1c0/0x1c0 [ 3331.761206] ? __fget+0x237/0x370 [ 3331.764876] ? security_file_ioctl+0x89/0xb0 [ 3331.769296] SyS_ioctl+0x8f/0xc0 [ 3331.772662] ? do_vfs_ioctl+0x1060/0x1060 [ 3331.776816] do_syscall_64+0x1e8/0x640 [ 3331.780766] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3331.785625] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3331.790865] RIP: 0033:0x45a6f9 [ 3331.794052] RSP: 002b:00007ff826292c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3331.801758] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3331.809023] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000007 [ 3331.816347] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3331.823612] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff8262936d4 [ 3331.830879] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3331.852955] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 3331.864632] CPU: 1 PID: 8778 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3331.872567] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3331.881929] Call Trace: [ 3331.884517] dump_stack+0x142/0x197 [ 3331.888149] warn_alloc.cold+0x96/0x1af [ 3331.892118] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3331.896962] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3331.902234] __alloc_pages_slowpath+0x23c6/0x2930 [ 3331.907078] ? save_trace+0x290/0x290 [ 3331.910877] ? warn_alloc+0xf0/0xf0 [ 3331.914508] ? __might_sleep+0x93/0xb0 [ 3331.918389] __alloc_pages_nodemask+0x62c/0x7a0 [ 3331.923053] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3331.928069] ? ____cache_alloc_node+0x1be/0x1d0 [ 3331.932733] ? cache_grow_begin+0x335/0x400 [ 3331.937053] cache_grow_begin+0x80/0x400 [ 3331.941109] ? __cpuset_node_allowed+0xff/0x450 [ 3331.945778] fallback_alloc+0x1fd/0x2c0 [ 3331.949751] ____cache_alloc_node+0x1be/0x1d0 [ 3331.954243] kmem_cache_alloc_trace+0x213/0x790 [ 3331.958904] ? debug_smp_processor_id+0x1c/0x20 [ 3331.963567] ? perf_trace_lock+0x109/0x500 [ 3331.967806] kvm_dev_ioctl+0x163/0x1620 [ 3331.971779] ? kvm_put_kvm+0xaa0/0xaa0 [ 3331.975661] ? kvm_put_kvm+0xaa0/0xaa0 [ 3331.979540] do_vfs_ioctl+0x7ae/0x1060 [ 3331.983425] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3331.988192] ? lock_downgrade+0x740/0x740 [ 3331.992335] ? ioctl_preallocate+0x1c0/0x1c0 [ 3331.996738] ? __fget+0x237/0x370 [ 3332.000286] ? security_file_ioctl+0x89/0xb0 [ 3332.004688] SyS_ioctl+0x8f/0xc0 [ 3332.008047] ? do_vfs_ioctl+0x1060/0x1060 [ 3332.012194] do_syscall_64+0x1e8/0x640 [ 3332.016089] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3332.020934] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3332.027071] RIP: 0033:0x45a6f9 [ 3332.030302] RSP: 002b:00007f063534ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3332.038020] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3332.045287] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3332.052639] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3332.059900] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063534b6d4 [ 3332.067164] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3332.086207] warn_alloc_show_mem: 1 callbacks suppressed [ 3332.086211] Mem-Info: [ 3332.093187] syz-executor.2: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3332.099025] active_anon:1344296 inactive_anon:564 isolated_anon:5 [ 3332.099025] active_file:821 inactive_file:1263 isolated_file:38 [ 3332.099025] unevictable:0 dirty:9 writeback:0 unstable:0 [ 3332.099025] slab_reclaimable:16912 slab_unreclaimable:114798 [ 3332.099025] mapped:53875 shmem:7461 pagetables:16476 bounce:0 [ 3332.099025] free:29834 free_pcp:15 free_cma:0 [ 3332.146469] Node 0 active_anon:1997436kB inactive_anon:1328kB active_file:988kB inactive_file:2092kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:211436kB dirty:4kB writeback:0kB shmem:11956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3332.155384] syz-executor.2 cpuset=syz2 mems_allowed=0-1 [ 3332.195641] Node 1 active_anon:3379648kB inactive_anon:928kB active_file:2260kB inactive_file:3388kB unevictable:0kB isolated(anon):20kB isolated(file):128kB mapped:4164kB dirty:32kB writeback:0kB shmem:17888kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3332.197183] CPU: 0 PID: 8771 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3332.232543] Node 0 [ 3332.232787] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3332.232808] DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3332.235016] Call Trace: [ 3332.235034] dump_stack+0x142/0x197 [ 3332.235052] warn_alloc.cold+0x96/0x1af [ 3332.249415] lowmem_reserve[]: [ 3332.271265] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3332.271287] ? __alloc_pages_direct_compact+0x290/0x380 [ 3332.271300] __alloc_pages_slowpath+0x23c6/0x2930 [ 3332.271323] ? save_trace+0x290/0x290 [ 3332.271341] ? warn_alloc+0xf0/0xf0 [ 3332.271364] ? __might_sleep+0x93/0xb0 [ 3332.271377] __alloc_pages_nodemask+0x62c/0x7a0 [ 3332.271393] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3332.271405] ? ____cache_alloc_node+0x1be/0x1d0 [ 3332.271418] ? cache_grow_begin+0x335/0x400 [ 3332.271433] cache_grow_begin+0x80/0x400 [ 3332.271444] ? __cpuset_node_allowed+0xff/0x450 [ 3332.271456] fallback_alloc+0x1fd/0x2c0 [ 3332.271470] ____cache_alloc_node+0x1be/0x1d0 [ 3332.271483] kmem_cache_alloc_trace+0x213/0x790 [ 3332.280984] 0 [ 3332.281834] ? debug_smp_processor_id+0x1c/0x20 [ 3332.281845] ? perf_trace_lock+0x109/0x500 [ 3332.281867] kvm_dev_ioctl+0x163/0x1620 [ 3332.285044] 2569 [ 3332.289805] ? kvm_put_kvm+0xaa0/0xaa0 [ 3332.289823] ? kvm_put_kvm+0xaa0/0xaa0 [ 3332.302324] 2569 [ 3332.303819] do_vfs_ioctl+0x7ae/0x1060 [ 3332.303833] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3332.307537] 2569 [ 3332.311326] ? lock_downgrade+0x740/0x740 [ 3332.311339] ? ioctl_preallocate+0x1c0/0x1c0 [ 3332.311354] ? __fget+0x237/0x370 [ 3332.311373] ? security_file_ioctl+0x89/0xb0 [ 3332.311386] SyS_ioctl+0x8f/0xc0 [ 3332.311397] ? do_vfs_ioctl+0x1060/0x1060 [ 3332.311412] do_syscall_64+0x1e8/0x640 [ 3332.311423] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3332.311443] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3332.311453] RIP: 0033:0x45a6f9 [ 3332.311461] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 [ 3332.323512] 2569 [ 3332.325781] ORIG_RAX: 0000000000000010 [ 3332.325788] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3332.325794] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3332.325800] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3332.325808] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3332.334172] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3332.420606] Node 0 [ 3332.452479] DMA32 free:37212kB min:36380kB low:45472kB high:54564kB active_anon:1992828kB inactive_anon:1328kB active_file:988kB inactive_file:2092kB unevictable:0kB writepending:12kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12192kB pagetables:28304kB bounce:0kB free_pcp:80kB local_pcp:8kB free_cma:0kB [ 3332.532132] lowmem_reserve[]: 0 0 0 0 0 [ 3332.536210] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3332.562938] lowmem_reserve[]: 0 0 0 0 0 [ 3332.566980] Node 1 Normal free:70504kB min:53508kB low:66884kB high:80260kB active_anon:3379772kB inactive_anon:928kB active_file:2532kB inactive_file:3448kB unevictable:0kB writepending:140kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11136kB pagetables:37508kB bounce:0kB free_pcp:868kB local_pcp:168kB free_cma:0kB [ 3332.606297] lowmem_reserve[]: 0 0 0 0 0 [ 3332.613148] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3332.636072] Node 0 DMA32: 1062*4kB (UM) 2161*8kB (UME) 968*16kB (UME) 2*32kB (ME) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 37088kB [ 3332.656411] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3332.667267] Node 1 Normal: 1318*4kB (UME) 318*8kB (UME) 1930*16kB (UMEH) 953*32kB (UEH) 0*64kB 4*128kB (H) 1*256kB (H) 1*512kB (H) 0*1024kB 0*2048kB 0*4096kB = 70472kB [ 3332.689718] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3332.699418] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3332.715092] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3332.726028] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3332.739466] 9713 total pagecache pages [ 3332.745500] 0 pages in swap cache [ 3332.748972] Swap cache stats: add 0, delete 0, find 0/0 [ 3332.760118] Free swap = 0kB [ 3332.763174] Total swap = 0kB [ 3332.766206] 1965979 pages RAM [ 3332.769315] 0 pages HighMem/MovableOnly [ 3332.779567] 335858 pages reserved [ 3332.783114] 0 pages cma reserved 20:16:33 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:16:33 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB]) 20:16:33 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3335.110664] 9pnet: Insufficient options for proto=fd [ 3336.552750] 9pnet: Insufficient options for proto=fd [ 3336.567272] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3336.578180] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 3336.583647] CPU: 0 PID: 8791 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3336.591453] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3336.600811] Call Trace: [ 3336.603401] dump_stack+0x142/0x197 [ 3336.607102] warn_alloc.cold+0x96/0x1af [ 3336.611085] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3336.615942] ? __alloc_pages_direct_compact+0x290/0x380 [ 3336.621298] __alloc_pages_slowpath+0x23c6/0x2930 [ 3336.626137] ? save_trace+0x290/0x290 [ 3336.629933] ? warn_alloc+0xf0/0xf0 [ 3336.633553] ? __might_sleep+0x93/0xb0 [ 3336.637434] __alloc_pages_nodemask+0x62c/0x7a0 [ 3336.642102] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3336.647132] ? ____cache_alloc_node+0x1be/0x1d0 [ 3336.651792] ? cache_grow_begin+0x335/0x400 [ 3336.656103] cache_grow_begin+0x80/0x400 [ 3336.660171] ? __cpuset_node_allowed+0xff/0x450 [ 3336.664834] fallback_alloc+0x1fd/0x2c0 [ 3336.668802] ____cache_alloc_node+0x1be/0x1d0 [ 3336.673294] kmem_cache_alloc_trace+0x213/0x790 [ 3336.678212] ? debug_smp_processor_id+0x1c/0x20 [ 3336.682905] ? perf_trace_lock+0x109/0x500 [ 3336.687141] kvm_dev_ioctl+0x163/0x1620 [ 3336.691114] ? kvm_put_kvm+0xaa0/0xaa0 [ 3336.694995] ? kvm_put_kvm+0xaa0/0xaa0 [ 3336.698871] do_vfs_ioctl+0x7ae/0x1060 [ 3336.702753] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3336.707505] ? lock_downgrade+0x740/0x740 [ 3336.711653] ? ioctl_preallocate+0x1c0/0x1c0 [ 3336.716051] ? __fget+0x237/0x370 [ 3336.719589] ? security_file_ioctl+0x89/0xb0 [ 3336.723989] SyS_ioctl+0x8f/0xc0 [ 3336.727344] ? do_vfs_ioctl+0x1060/0x1060 [ 3336.731484] do_syscall_64+0x1e8/0x640 [ 3336.735366] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3336.740215] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3336.745405] RIP: 0033:0x45a6f9 [ 3336.748578] RSP: 002b:00007f2bca452c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3336.756273] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3336.763531] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3336.770793] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3336.778065] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4536d4 [ 3336.785338] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3336.795946] warn_alloc_show_mem: 2 callbacks suppressed [ 3336.795950] Mem-Info: [ 3336.804199] active_anon:1344229 inactive_anon:564 isolated_anon:0 [ 3336.804199] active_file:574 inactive_file:1205 isolated_file:12 [ 3336.804199] unevictable:0 dirty:16 writeback:0 unstable:0 [ 3336.804199] slab_reclaimable:16916 slab_unreclaimable:114703 [ 3336.804199] mapped:53552 shmem:7461 pagetables:16431 bounce:0 [ 3336.804199] free:30279 free_pcp:134 free_cma:0 [ 3336.838621] Node 0 active_anon:1997360kB inactive_anon:1328kB active_file:8kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208948kB dirty:8kB writeback:0kB shmem:11960kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3336.866711] Node 1 active_anon:3379556kB inactive_anon:928kB active_file:2388kB inactive_file:5016kB unevictable:0kB isolated(anon):0kB isolated(file):48kB mapped:5260kB dirty:56kB writeback:0kB shmem:17884kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3336.895318] Node 0 DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3336.921994] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3336.927686] Node 0 DMA32 free:40260kB min:36380kB low:45472kB high:54564kB active_anon:1992812kB inactive_anon:1328kB active_file:8kB inactive_file:4kB unevictable:0kB writepending:8kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12192kB pagetables:28304kB bounce:0kB free_pcp:224kB local_pcp:116kB free_cma:0kB [ 3336.956990] lowmem_reserve[]: 0 0 0 0 0 [ 3336.961077] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3336.986613] lowmem_reserve[]: 0 0 0 0 0 [ 3336.991995] Node 1 Normal free:68868kB min:53508kB low:66884kB high:80260kB active_anon:3379556kB inactive_anon:928kB active_file:2688kB inactive_file:6116kB unevictable:0kB writepending:56kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11136kB pagetables:37420kB bounce:0kB free_pcp:416kB local_pcp:248kB free_cma:0kB [ 3337.021755] lowmem_reserve[]: 0 0 0 0 0 [ 3337.026021] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3337.043023] Node 0 DMA32: 1688*4kB (UME) 2203*8kB (UM) 971*16kB (UME) 8*32kB (E) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 40168kB [ 3337.056653] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3337.067603] Node 1 Normal: 584*4kB (UME) 410*8kB (UME) 1945*16kB (UMEH) 966*32kB (UMEH) 0*64kB 4*128kB (H) 1*256kB (H) 1*512kB (H) 0*1024kB 0*2048kB 0*4096kB = 68928kB [ 3337.082979] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3337.091916] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3337.100653] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3337.109501] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3337.118313] 9318 total pagecache pages [ 3337.122373] 0 pages in swap cache [ 3337.125827] Swap cache stats: add 0, delete 0, find 0/0 [ 3337.131303] Free swap = 0kB [ 3337.134320] Total swap = 0kB [ 3337.137363] 1965979 pages RAM [ 3337.140506] 0 pages HighMem/MovableOnly [ 3337.144597] 335858 pages reserved [ 3337.148140] 0 pages cma reserved [ 3339.993406] syz-executor.0: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3340.004315] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 3340.009829] CPU: 0 PID: 8795 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3340.017777] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3340.027123] Call Trace: [ 3340.029696] dump_stack+0x142/0x197 [ 3340.033311] warn_alloc.cold+0x96/0x1af [ 3340.037279] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3340.042122] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3340.047395] __alloc_pages_slowpath+0x23c6/0x2930 [ 3340.052250] ? save_trace+0x290/0x290 [ 3340.056040] ? warn_alloc+0xf0/0xf0 [ 3340.059662] ? __might_sleep+0x93/0xb0 [ 3340.063540] __alloc_pages_nodemask+0x62c/0x7a0 [ 3340.068199] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3340.073201] ? ____cache_alloc_node+0x1be/0x1d0 [ 3340.077857] ? cache_grow_begin+0x335/0x400 [ 3340.082174] cache_grow_begin+0x80/0x400 [ 3340.086221] ? __cpuset_node_allowed+0xff/0x450 [ 3340.090878] fallback_alloc+0x1fd/0x2c0 [ 3340.094843] ____cache_alloc_node+0x1be/0x1d0 [ 3340.099331] kmem_cache_alloc_trace+0x213/0x790 [ 3340.103985] ? debug_smp_processor_id+0x1c/0x20 [ 3340.108640] ? perf_trace_lock+0x109/0x500 [ 3340.112902] kvm_dev_ioctl+0x163/0x1620 [ 3340.116874] ? kvm_put_kvm+0xaa0/0xaa0 [ 3340.120764] ? kvm_put_kvm+0xaa0/0xaa0 [ 3340.124642] do_vfs_ioctl+0x7ae/0x1060 [ 3340.128520] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3340.133265] ? lock_downgrade+0x740/0x740 [ 3340.137407] ? ioctl_preallocate+0x1c0/0x1c0 [ 3340.141811] ? __fget+0x237/0x370 [ 3340.145259] ? security_file_ioctl+0x89/0xb0 [ 3340.149658] SyS_ioctl+0x8f/0xc0 [ 3340.153013] ? do_vfs_ioctl+0x1060/0x1060 [ 3340.157150] do_syscall_64+0x1e8/0x640 [ 3340.161024] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3340.165859] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3340.171033] RIP: 0033:0x45a6f9 [ 3340.174205] RSP: 002b:00007f063534ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3340.181902] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3340.189155] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3340.196435] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3340.203695] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063534b6d4 [ 3340.210949] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3340.221158] Mem-Info: [ 3340.224118] active_anon:1344226 inactive_anon:566 isolated_anon:0 [ 3340.224118] active_file:480 inactive_file:2878 isolated_file:19 [ 3340.224118] unevictable:0 dirty:1 writeback:0 unstable:0 [ 3340.224118] slab_reclaimable:16902 slab_unreclaimable:114530 [ 3340.224118] mapped:54538 shmem:7461 pagetables:16419 bounce:0 [ 3340.224118] free:29114 free_pcp:28 free_cma:0 [ 3340.258707] Node 0 active_anon:1997452kB inactive_anon:1328kB active_file:16kB inactive_file:1156kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:209488kB dirty:4kB writeback:0kB shmem:11956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 20:16:38 executing program 3: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:16:38 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:16:38 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3340.287753] Node 1 active_anon:3379452kB inactive_anon:936kB active_file:2604kB inactive_file:9652kB unevictable:0kB isolated(anon):0kB isolated(file):76kB mapped:8864kB dirty:0kB writeback:0kB shmem:17888kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3340.316485] Node 0 DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3340.346566] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3340.352399] Node 0 DMA32 free:38868kB min:36380kB low:45472kB high:54564kB active_anon:1992904kB inactive_anon:1328kB active_file:16kB inactive_file:1156kB unevictable:0kB writepending:4kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12192kB pagetables:28408kB bounce:0kB free_pcp:120kB local_pcp:0kB free_cma:0kB [ 3340.385926] lowmem_reserve[]: 0 0 0 0 0 [ 3340.405711] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3340.454913] 9pnet: Insufficient options for proto=fd [ 3340.468548] lowmem_reserve[]: 0 0 0 0 0 [ 3340.479570] Node 1 Normal free:67064kB min:53508kB low:66884kB high:80260kB active_anon:3379452kB inactive_anon:936kB active_file:3920kB inactive_file:6816kB unevictable:0kB writepending:0kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11232kB pagetables:37268kB bounce:0kB free_pcp:1344kB local_pcp:696kB free_cma:0kB [ 3340.517179] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3340.540244] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 3340.543387] lowmem_reserve[]: 0 0 0 [ 3340.545891] syz-executor.2: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3340.553972] CPU: 1 PID: 8802 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3340.561052] 0 [ 3340.568250] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3340.568255] Call Trace: [ 3340.568273] dump_stack+0x142/0x197 [ 3340.568293] warn_alloc.cold+0x96/0x1af [ 3340.568303] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3340.568322] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3340.568336] __alloc_pages_slowpath+0x23c6/0x2930 [ 3340.568359] ? save_trace+0x290/0x290 [ 3340.568376] ? warn_alloc+0xf0/0xf0 [ 3340.568400] ? __might_sleep+0x93/0xb0 [ 3340.568414] __alloc_pages_nodemask+0x62c/0x7a0 [ 3340.568429] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3340.568443] ? ____cache_alloc_node+0x1be/0x1d0 [ 3340.571629] 9pnet: Insufficient options for proto=fd [ 3340.579593] ? cache_grow_begin+0x335/0x400 [ 3340.579607] cache_grow_begin+0x80/0x400 [ 3340.579620] ? __cpuset_node_allowed+0xff/0x450 [ 3340.579631] fallback_alloc+0x1fd/0x2c0 [ 3340.579645] ____cache_alloc_node+0x1be/0x1d0 [ 3340.579659] kmem_cache_alloc_trace+0x213/0x790 [ 3340.579668] ? debug_smp_processor_id+0x1c/0x20 [ 3340.579679] ? perf_trace_lock+0x109/0x500 [ 3340.579706] kvm_dev_ioctl+0x163/0x1620 [ 3340.582704] syz-executor.2 cpuset= [ 3340.585904] ? kvm_put_kvm+0xaa0/0xaa0 [ 3340.585924] ? kvm_put_kvm+0xaa0/0xaa0 [ 3340.585937] do_vfs_ioctl+0x7ae/0x1060 [ 3340.585951] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3340.590253] 0 [ 3340.594777] ? lock_downgrade+0x740/0x740 [ 3340.594795] ? ioctl_preallocate+0x1c0/0x1c0 [ 3340.594811] ? __fget+0x237/0x370 [ 3340.594835] ? security_file_ioctl+0x89/0xb0 [ 3340.594846] SyS_ioctl+0x8f/0xc0 [ 3340.594855] ? do_vfs_ioctl+0x1060/0x1060 [ 3340.594868] do_syscall_64+0x1e8/0x640 [ 3340.594876] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3340.594894] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3340.594903] RIP: 0033:0x45a6f9 [ 3340.594908] RSP: 002b:00007f2bca431c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3340.594919] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3340.594924] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3340.594929] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 3340.594935] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4326d4 [ 3340.594941] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3340.738468] syz2 [ 3340.781468] mems_allowed=0-1 [ 3340.786171] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3340.795080] CPU: 1 PID: 8798 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3340.813741] Node 0 [ 3340.818362] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3340.818367] Call Trace: [ 3340.818387] dump_stack+0x142/0x197 [ 3340.818405] warn_alloc.cold+0x96/0x1af [ 3340.820730] DMA32: [ 3340.829994] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3340.830017] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3340.830032] __alloc_pages_slowpath+0x23c6/0x2930 [ 3340.830052] ? save_trace+0x290/0x290 [ 3340.830067] ? warn_alloc+0xf0/0xf0 [ 3340.830090] ? __might_sleep+0x93/0xb0 [ 3340.830102] __alloc_pages_nodemask+0x62c/0x7a0 [ 3340.830116] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3340.830128] ? ____cache_alloc_node+0x1be/0x1d0 [ 3340.830139] ? cache_grow_begin+0x335/0x400 [ 3340.830152] cache_grow_begin+0x80/0x400 [ 3340.830164] ? __cpuset_node_allowed+0xff/0x450 [ 3340.830183] fallback_alloc+0x1fd/0x2c0 [ 3340.830198] ____cache_alloc_node+0x1be/0x1d0 [ 3340.830210] kmem_cache_alloc_trace+0x213/0x790 [ 3340.830220] ? debug_smp_processor_id+0x1c/0x20 [ 3340.830229] ? perf_trace_lock+0x109/0x500 [ 3340.830252] kvm_dev_ioctl+0x163/0x1620 [ 3340.841552] 1311*4kB [ 3340.842633] ? kvm_put_kvm+0xaa0/0xaa0 [ 3340.842650] ? kvm_put_kvm+0xaa0/0xaa0 [ 3340.847562] (UME) [ 3340.852733] do_vfs_ioctl+0x7ae/0x1060 [ 3340.852748] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3340.852759] ? lock_downgrade+0x740/0x740 [ 3340.852772] ? ioctl_preallocate+0x1c0/0x1c0 [ 3340.852785] ? __fget+0x237/0x370 [ 3340.852805] ? security_file_ioctl+0x89/0xb0 [ 3340.852819] SyS_ioctl+0x8f/0xc0 [ 3340.852828] ? do_vfs_ioctl+0x1060/0x1060 [ 3340.852841] do_syscall_64+0x1e8/0x640 [ 3340.852852] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3340.860570] 2144*8kB [ 3340.861475] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3340.865872] (UE) [ 3340.868938] RIP: 0033:0x45a6f9 [ 3340.868944] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3340.868955] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3340.868961] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3340.868967] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3340.868973] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3340.868978] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3341.035890] 956*16kB (U) 9*32kB (UE) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 37980kB [ 3341.045924] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3341.056929] Node 1 Normal: 1291*4kB (UE) 418*8kB (UME) 2017*16kB (UMEH) 979*32kB (UMEH) 2*64kB (UM) 4*128kB (H) 1*256kB (H) 1*512kB (H) 0*1024kB 0*2048kB 0*4096kB = 73516kB [ 3341.072711] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3341.081837] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3341.090523] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3341.099585] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3341.108342] 8906 total pagecache pages [ 3341.112460] 0 pages in swap cache [ 3341.115964] Swap cache stats: add 0, delete 0, find 0/0 [ 3341.121530] Free swap = 0kB [ 3341.124695] Total swap = 0kB [ 3341.127783] 1965979 pages RAM [ 3341.131061] 0 pages HighMem/MovableOnly [ 3341.135097] 335858 pages reserved [ 3341.138613] 0 pages cma reserved 20:16:42 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) 20:16:42 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB]) 20:16:42 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:16:42 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x2) r1 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000)='/dev/dlm-control\x00', 0x200, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm_plock\x00', 0x40000, 0x0) r7 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r7, 0x84, 0x1d, &(0x7f000025e000)={0x1, [0x0]}, &(0x7f0000a8a000)=0x8) setsockopt$inet_sctp6_SCTP_MAXSEG(r6, 0x84, 0xd, &(0x7f00000002c0)=@assoc_id=r8, 0x4) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000540)={r8, @in6={{0xa, 0x0, 0x101, @mcast1, 0x7fffffff}}, 0x800, 0x8000, 0x6, 0x7fffffff, 0x4c}, &(0x7f0000000100)=0x98) getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r5, 0x84, 0x1f, &(0x7f0000000180)={r8, @in6={{0xa, 0x4e22, 0xc2eb, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0x16}}, 0x1}}, 0xf583, 0x1ff}, &(0x7f0000000240)=0x90) setsockopt$llc_int(0xffffffffffffffff, 0x10c, 0x4, &(0x7f0000000340)=0x3, 0x4) getsockopt$inet_sctp_SCTP_DEFAULT_SNDINFO(r3, 0x84, 0x22, &(0x7f0000000280)={0xfffe, 0x1, 0x7b4, 0x1ff, r9}, &(0x7f00000002c0)=0x10) getgid() ioctl$VIDIOC_QUERY_EXT_CTRL(r1, 0xc0e85667, &(0x7f0000000080)={0x0, 0x9, "fd18f75b93e2c856d3e66f6db1e6d389dfe59d47dec629ba93d9d19d3147aed8", 0xffffffff, 0x2, 0x40, 0x40, 0x0, 0x113d, 0x965, 0x1, [0x3f, 0xffff2c5f, 0x8, 0x80000001]}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r11 = dup(r10) ioctl$PERF_EVENT_IOC_ENABLE(r11, 0x8912, 0x400200) ioctl$EVIOCGABS20(r11, 0x80184560, &(0x7f0000000300)=""/12) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) [ 3344.467747] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3344.487338] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 3344.493605] CPU: 0 PID: 8815 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3344.501773] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3344.501781] Call Trace: [ 3344.501805] dump_stack+0x142/0x197 [ 3344.501829] warn_alloc.cold+0x96/0x1af [ 3344.501842] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3344.501861] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3344.501872] __alloc_pages_slowpath+0x23c6/0x2930 [ 3344.536725] ? save_trace+0x290/0x290 [ 3344.540533] ? warn_alloc+0xf0/0xf0 [ 3344.540558] ? __might_sleep+0x93/0xb0 [ 3344.540571] __alloc_pages_nodemask+0x62c/0x7a0 [ 3344.540584] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3344.557778] ? ____cache_alloc_node+0x1be/0x1d0 [ 3344.562454] ? cache_grow_begin+0x335/0x400 [ 3344.566795] cache_grow_begin+0x80/0x400 [ 3344.570868] ? __cpuset_node_allowed+0xff/0x450 [ 3344.575551] fallback_alloc+0x1fd/0x2c0 [ 3344.579537] ____cache_alloc_node+0x1be/0x1d0 [ 3344.584057] kmem_cache_alloc_trace+0x213/0x790 [ 3344.588715] ? debug_smp_processor_id+0x1c/0x20 [ 3344.593383] ? perf_trace_lock+0x109/0x500 [ 3344.597651] kvm_dev_ioctl+0x163/0x1620 [ 3344.601623] ? kvm_put_kvm+0xaa0/0xaa0 [ 3344.605505] ? kvm_put_kvm+0xaa0/0xaa0 [ 3344.609383] do_vfs_ioctl+0x7ae/0x1060 [ 3344.613260] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3344.618006] ? lock_downgrade+0x740/0x740 [ 3344.622142] ? ioctl_preallocate+0x1c0/0x1c0 [ 3344.626543] ? __fget+0x237/0x370 [ 3344.630025] ? security_file_ioctl+0x89/0xb0 [ 3344.634430] SyS_ioctl+0x8f/0xc0 [ 3344.637785] ? do_vfs_ioctl+0x1060/0x1060 [ 3344.641933] do_syscall_64+0x1e8/0x640 [ 3344.645806] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3344.650643] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3344.655822] RIP: 0033:0x45a6f9 [ 3344.658998] RSP: 002b:00007f2bca431c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3344.666697] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3344.673952] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3344.681205] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 3344.688473] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4326d4 [ 3344.695744] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3344.720190] 9pnet: Insufficient options for proto=fd [ 3344.766823] 9p: Unknown access argument  [ 3344.804498] warn_alloc_show_mem: 2 callbacks suppressed [ 3344.804501] Mem-Info: [ 3344.823711] syz-executor.0: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3344.862307] active_anon:1343503 inactive_anon:566 isolated_anon:0 [ 3344.862307] active_file:1007 inactive_file:1545 isolated_file:33 [ 3344.862307] unevictable:0 dirty:22 writeback:0 unstable:0 [ 3344.862307] slab_reclaimable:16943 slab_unreclaimable:114524 [ 3344.862307] mapped:54216 shmem:7461 pagetables:16496 bounce:0 [ 3344.862307] free:30142 free_pcp:172 free_cma:0 [ 3344.862478] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 3344.923234] CPU: 0 PID: 8814 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3344.931054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3344.940411] Call Trace: [ 3344.943008] dump_stack+0x142/0x197 [ 3344.946650] warn_alloc.cold+0x96/0x1af [ 3344.950628] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3344.955487] ? __alloc_pages_direct_compact+0x290/0x380 [ 3344.956388] Node 0 active_anon:1996056kB inactive_anon:1328kB active_file:372kB inactive_file:2476kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:210800kB dirty:16kB writeback:0kB shmem:11956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3344.960851] __alloc_pages_slowpath+0x23c6/0x2930 [ 3344.960879] ? save_trace+0x290/0x290 [ 3344.960899] ? warn_alloc+0xf0/0xf0 [ 3344.960923] ? __might_sleep+0x93/0xb0 [ 3344.960936] __alloc_pages_nodemask+0x62c/0x7a0 [ 3344.960952] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3344.960965] ? ____cache_alloc_node+0x1be/0x1d0 [ 3344.960980] ? cache_grow_begin+0x335/0x400 [ 3345.023827] cache_grow_begin+0x80/0x400 [ 3345.027895] ? __cpuset_node_allowed+0xff/0x450 [ 3345.032557] fallback_alloc+0x1fd/0x2c0 [ 3345.036524] ____cache_alloc_node+0x1be/0x1d0 [ 3345.041014] kmem_cache_alloc_trace+0x213/0x790 [ 3345.045688] ? debug_smp_processor_id+0x1c/0x20 [ 3345.050528] ? perf_trace_lock+0x109/0x500 [ 3345.054761] kvm_dev_ioctl+0x163/0x1620 [ 3345.058731] ? kvm_put_kvm+0xaa0/0xaa0 [ 3345.062615] ? kvm_put_kvm+0xaa0/0xaa0 [ 3345.066505] do_vfs_ioctl+0x7ae/0x1060 [ 3345.070386] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3345.075131] ? lock_downgrade+0x740/0x740 [ 3345.079273] ? ioctl_preallocate+0x1c0/0x1c0 [ 3345.083671] ? __fget+0x237/0x370 [ 3345.087117] ? security_file_ioctl+0x89/0xb0 [ 3345.091518] SyS_ioctl+0x8f/0xc0 [ 3345.094871] ? do_vfs_ioctl+0x1060/0x1060 [ 3345.099007] do_syscall_64+0x1e8/0x640 [ 3345.102881] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3345.107716] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3345.112890] RIP: 0033:0x45a6f9 [ 3345.116065] RSP: 002b:00007f0635329c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3345.123759] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3345.131014] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3345.138274] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 3345.145529] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063532a6d4 [ 3345.152783] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3345.163533] Node 1 active_anon:3377972kB inactive_anon:932kB active_file:2784kB inactive_file:2968kB unevictable:0kB isolated(anon):0kB isolated(file):132kB mapped:4684kB dirty:96kB writeback:56kB shmem:17888kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3345.195400] Node 0 DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3345.223130] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3345.228319] Node 0 DMA32 free:37956kB min:36380kB low:45472kB high:54564kB active_anon:1991544kB inactive_anon:1328kB active_file:448kB inactive_file:2424kB unevictable:0kB writepending:20kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28432kB bounce:0kB free_pcp:156kB local_pcp:0kB free_cma:0kB [ 3345.258899] lowmem_reserve[]: 0 0 0 0 0 [ 3345.263128] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3345.291411] lowmem_reserve[]: 0 0 0 0 0 [ 3345.295774] Node 1 Normal free:73728kB min:53508kB low:66884kB high:80260kB active_anon:3377876kB inactive_anon:928kB active_file:3536kB inactive_file:3052kB unevictable:0kB writepending:108kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11232kB pagetables:37452kB bounce:0kB free_pcp:560kB local_pcp:388kB free_cma:0kB [ 3345.357394] lowmem_reserve[]: 0 0 0 0 0 [ 3345.366947] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3345.391082] Node 0 DMA32: 1240*4kB (UME) 2169*8kB (UME) 956*16kB (U) 7*32kB (UE) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 37832kB [ 3345.434488] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3345.445853] Node 1 Normal: 1238*4kB (UE) 475*8kB (UME) 1951*16kB (UMEH) 975*32kB (UMEH) 3*64kB (UM) 4*128kB (H) 1*256kB (H) 1*512kB (H) 0*1024kB 0*2048kB 0*4096kB = 72640kB [ 3345.461866] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3345.470924] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3345.479652] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3345.488657] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3345.497579] 9578 total pagecache pages [ 3345.501647] 0 pages in swap cache [ 3345.505171] Swap cache stats: add 0, delete 0, find 0/0 [ 3345.510723] Free swap = 0kB [ 3345.513842] Total swap = 0kB [ 3345.516956] 1965979 pages RAM [ 3345.520489] 0 pages HighMem/MovableOnly [ 3345.524635] 335858 pages reserved [ 3345.528281] 0 pages cma reserved 20:16:46 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB]) 20:16:46 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) 20:16:46 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:16:46 executing program 3: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) [ 3348.604455] syz-executor.3: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3348.616398] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3348.622658] 9p: Unknown access argument  [ 3348.651717] 9pnet: Insufficient options for proto=fd [ 3348.664897] syz-executor.3 cpuset=syz3 mems_allowed=0-1 [ 3348.679195] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 3348.694843] CPU: 1 PID: 8832 Comm: syz-executor.3 Not tainted 4.14.158-syzkaller #0 [ 3348.702658] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3348.712011] Call Trace: [ 3348.714612] dump_stack+0x142/0x197 [ 3348.718241] warn_alloc.cold+0x96/0x1af [ 3348.722205] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3348.727047] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3348.732326] __alloc_pages_slowpath+0x23c6/0x2930 [ 3348.737178] ? save_trace+0x290/0x290 [ 3348.740973] ? warn_alloc+0xf0/0xf0 [ 3348.744608] ? __might_sleep+0x93/0xb0 [ 3348.748518] __alloc_pages_nodemask+0x62c/0x7a0 20:16:47 executing program 5: r0 = syz_open_dev$vbi(&(0x7f0000000540)='/dev/vbi#\x00', 0x1, 0x2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r1) r2 = dup3(r1, r0, 0x80000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm_plock\x00', 0x40000, 0x0) r6 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f000025e000)={0x1, [0x0]}, &(0x7f0000a8a000)=0x8) setsockopt$inet_sctp6_SCTP_MAXSEG(r5, 0x84, 0xd, &(0x7f00000002c0)=@assoc_id=r7, 0x4) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000540)={r7, @in6={{0xa, 0x0, 0x101, @mcast1, 0x7fffffff}}, 0x800, 0x8000, 0x6, 0x7fffffff, 0x4c}, &(0x7f0000000100)=0x98) getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r4, 0x84, 0x6d, &(0x7f00000000c0)={r7, 0xcb, "53f6e5afbdd2675153448f53ba47a36ee4ff02cb1d7fc17df6ef27c4f5d27c6bfd83ffa52450085b776eb504a4032207ea5328b57c5bd9db835de0568c08d75341bb640b12041be942611c94126e12edbbb2ce1caa3e95a92370cb4dd98808ab4be16807324619596988db18c5d5266612ae67e4edd94452170eb7006f15198c1a0ad52fee6d52f394e6d772f42580faf3e5c97bfb3ca722597a2d7007e88df129d5cde35466c72c93679a90f6c3f7fd8827ba9d9d0bed48fcb8b2dd1966e26f7791d47702673e288bf935"}, &(0x7f00000001c0)=0xd3) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f00000002c0)={r8, 0xb4, &(0x7f0000000200)=[@in6={0xa, 0x4e22, 0x9, @rand_addr="bb9489e109640ad13bdf1ca6c4da94fe"}, @in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, @in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1b}}, @in6={0xa, 0x4e24, 0x1000, @mcast2, 0x37c00}, @in={0x2, 0x4e21, @multicast1}, @in={0x2, 0x4e22, @multicast2}, @in={0x2, 0x4e22, @loopback}, @in6={0xa, 0x4e22, 0x0, @local, 0x81}, @in={0x2, 0x4e24, @multicast2}]}, &(0x7f0000000300)=0x10) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0285628, &(0x7f00000005c0)={0x980000, 0x0, 0x0, [], 0x0}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r10 = dup(r9) ioctl$PERF_EVENT_IOC_ENABLE(r10, 0x8912, 0x400200) ioctl$VIDIOC_DECODER_CMD(r10, 0xc0485660, &(0x7f0000000000)={0x0, 0x1, @raw_data=[0x5, 0x0, 0x5a563fea, 0x0, 0x0, 0x9, 0x7, 0x3, 0x1ff, 0x7, 0xf4, 0x10000, 0x20d6, 0x400, 0x4, 0x1b17800]}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r12 = dup(r11) ioctl$PERF_EVENT_IOC_ENABLE(r12, 0x8912, 0x400200) r13 = socket$nl_generic(0x10, 0x3, 0x10) r14 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040)='TIPCv2\x00') sendmsg$TIPC_NL_LINK_RESET_STATS(r13, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)={0x24, r14, 0x5, 0x0, 0x0, {0x8}, [@TIPC_NLA_LINK={0x10, 0x4, [@TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}]}]}, 0x24}}, 0x0) sendmsg$TIPC_NL_NAME_TABLE_GET(r12, &(0x7f0000000440)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000400)={&(0x7f0000000380)={0x70, r14, 0x2, 0x70bd2c, 0x25dfdbfc, {}, [@TIPC_NLA_LINK={0x5c, 0x4, [@TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x44, 0x7, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0x3}, @TIPC_NLA_PROP_WIN={0x8, 0x3, 0x6}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x2}, @TIPC_NLA_PROP_MTU={0x8}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x175b}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x1}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0x10001}, @TIPC_NLA_PROP_MTU={0x8, 0x4, 0x7}]}]}]}, 0x70}, 0x1, 0x0, 0x0, 0x20000000}, 0x84) [ 3348.753197] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3348.758211] ? ____cache_alloc_node+0x1be/0x1d0 [ 3348.762876] ? cache_grow_begin+0x335/0x400 [ 3348.767216] cache_grow_begin+0x80/0x400 [ 3348.771278] ? __cpuset_node_allowed+0xff/0x450 [ 3348.775951] fallback_alloc+0x1fd/0x2c0 [ 3348.779936] ____cache_alloc_node+0x1be/0x1d0 [ 3348.784423] kmem_cache_alloc_trace+0x213/0x790 [ 3348.789090] ? debug_smp_processor_id+0x1c/0x20 [ 3348.793766] ? perf_trace_lock+0x109/0x500 [ 3348.798019] kvm_dev_ioctl+0x163/0x1620 [ 3348.801996] ? kvm_put_kvm+0xaa0/0xaa0 [ 3348.805891] ? kvm_put_kvm+0xaa0/0xaa0 [ 3348.809767] do_vfs_ioctl+0x7ae/0x1060 [ 3348.813653] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3348.818406] ? lock_downgrade+0x740/0x740 [ 3348.822553] ? ioctl_preallocate+0x1c0/0x1c0 [ 3348.826965] ? __fget+0x237/0x370 [ 3348.830427] ? security_file_ioctl+0x89/0xb0 [ 3348.834842] SyS_ioctl+0x8f/0xc0 [ 3348.838236] ? do_vfs_ioctl+0x1060/0x1060 [ 3348.842382] do_syscall_64+0x1e8/0x640 [ 3348.846267] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3348.851115] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3348.856302] RIP: 0033:0x45a6f9 [ 3348.859501] RSP: 002b:00007ff826292c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3348.867213] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3348.874491] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000007 [ 3348.881761] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3348.889032] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff8262936d4 [ 3348.896300] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3348.916668] CPU: 0 PID: 8835 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3348.924495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3348.924501] Call Trace: [ 3348.924520] dump_stack+0x142/0x197 [ 3348.924540] warn_alloc.cold+0x96/0x1af [ 3348.924552] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3348.924576] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3348.924591] __alloc_pages_slowpath+0x23c6/0x2930 [ 3348.924612] ? save_trace+0x290/0x290 [ 3348.924629] ? warn_alloc+0xf0/0xf0 [ 3348.924655] ? __might_sleep+0x93/0xb0 [ 3348.924668] __alloc_pages_nodemask+0x62c/0x7a0 [ 3348.924684] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3348.924696] ? ____cache_alloc_node+0x1be/0x1d0 [ 3348.924708] ? cache_grow_begin+0x335/0x400 [ 3348.924730] cache_grow_begin+0x80/0x400 [ 3348.944242] ? __cpuset_node_allowed+0xff/0x450 [ 3348.944257] fallback_alloc+0x1fd/0x2c0 [ 3348.944276] ____cache_alloc_node+0x1be/0x1d0 [ 3348.944292] kmem_cache_alloc_trace+0x213/0x790 [ 3348.944303] ? debug_smp_processor_id+0x1c/0x20 [ 3348.944314] ? perf_trace_lock+0x109/0x500 [ 3348.944335] kvm_dev_ioctl+0x163/0x1620 [ 3348.954427] ? kvm_put_kvm+0xaa0/0xaa0 [ 3348.954446] ? kvm_put_kvm+0xaa0/0xaa0 [ 3348.954461] do_vfs_ioctl+0x7ae/0x1060 [ 3348.954476] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3348.954488] ? lock_downgrade+0x740/0x740 [ 3348.954500] ? ioctl_preallocate+0x1c0/0x1c0 [ 3348.954514] ? __fget+0x237/0x370 [ 3348.963132] ? security_file_ioctl+0x89/0xb0 [ 3348.963147] SyS_ioctl+0x8f/0xc0 [ 3348.963158] ? do_vfs_ioctl+0x1060/0x1060 [ 3348.963174] do_syscall_64+0x1e8/0x640 [ 3348.963185] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3348.963205] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3348.963216] RIP: 0033:0x45a6f9 [ 3348.970692] RSP: 002b:00007f2bca452c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3348.970705] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3348.970711] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3348.970718] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 20:16:47 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) [ 3348.970729] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4536d4 [ 3348.970735] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3349.156514] warn_alloc_show_mem: 1 callbacks suppressed [ 3349.156519] Mem-Info: [ 3349.185479] active_anon:1343518 inactive_anon:567 isolated_anon:0 [ 3349.185479] active_file:1215 inactive_file:1071 isolated_file:64 [ 3349.185479] unevictable:0 dirty:95 writeback:0 unstable:0 [ 3349.185479] slab_reclaimable:16911 slab_unreclaimable:115004 [ 3349.185479] mapped:54214 shmem:7463 pagetables:16498 bounce:0 [ 3349.185479] free:29615 free_pcp:421 free_cma:0 [ 3349.278062] Node 0 active_anon:1995980kB inactive_anon:1328kB active_file:656kB inactive_file:552kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:210196kB dirty:76kB writeback:0kB shmem:11956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3349.326797] Node 1 active_anon:3378192kB inactive_anon:940kB active_file:2236kB inactive_file:2724kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:3660kB dirty:304kB writeback:0kB shmem:17896kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3349.372352] Node 0 DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3349.456056] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3349.467726] Node 0 DMA32 free:39732kB min:36380kB low:45472kB high:54564kB active_anon:1991432kB inactive_anon:1328kB active_file:392kB inactive_file:304kB unevictable:0kB writepending:76kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28576kB bounce:0kB free_pcp:188kB local_pcp:0kB free_cma:0kB [ 3349.513838] lowmem_reserve[]: 0 0 0 0 0 [ 3349.526543] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3349.557869] lowmem_reserve[]: 0 0 0 0 0 [ 3349.562042] Node 1 Normal free:75592kB min:53508kB low:66884kB high:80260kB active_anon:3378040kB inactive_anon:936kB active_file:1728kB inactive_file:1600kB unevictable:0kB writepending:364kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11392kB pagetables:37364kB bounce:0kB free_pcp:808kB local_pcp:176kB free_cma:0kB [ 3349.607207] lowmem_reserve[]: 0 0 0 0 0 [ 3349.611339] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3349.634321] Node 0 DMA32: 1587*4kB (UM) 2213*8kB (UME) 967*16kB (UME) 2*32kB (E) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39588kB [ 3349.649867] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3349.668027] Node 1 Normal: 1605*4kB (UME) 651*8kB (UME) 1966*16kB (UMEH) 979*32kB (UMEH) 1*64kB (U) 4*128kB (H) 1*256kB (H) 1*512kB (H) 0*1024kB 0*2048kB 0*4096kB = 75756kB [ 3349.690624] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3349.707314] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3349.717812] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3349.733350] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3349.746006] 8479 total pagecache pages [ 3349.749984] 0 pages in swap cache [ 3349.757242] Swap cache stats: add 0, delete 0, find 0/0 [ 3349.766067] Free swap = 0kB [ 3349.769097] Total swap = 0kB [ 3349.776649] 1965979 pages RAM [ 3349.779770] 0 pages HighMem/MovableOnly [ 3349.784661] 335858 pages reserved [ 3349.788192] 0 pages cma reserved 20:16:52 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:16:52 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',acce']) 20:16:52 executing program 3: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r2 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:16:52 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$VIDIOC_S_PARM(r2, 0xc0cc5616, &(0x7f0000000080)={0x5, @capture={0x1000, 0x2, {0x400, 0x1}, 0x8001, 0x2e8}}) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) 20:16:52 executing program 5: r0 = syz_open_dev$vbi(&(0x7f0000000540)='/dev/vbi#\x00', 0x1, 0x2) ioctl$VIDIOC_TRY_FMT(r0, 0xc0d05640, &(0x7f00000000c0)={0x7, @win={{0x20, 0x0, 0x3157, 0x1}, 0x7, 0x2, &(0x7f0000000080)={{0xc3, 0x9, 0x6, 0x1}, &(0x7f0000000040)={{0xfffffff9, 0xf4ea, 0xe12, 0x7fffffff}, &(0x7f0000000000)={{0x1ff, 0x8001, 0x61ae, 0x9}}}}, 0x9, &(0x7f0000000600)="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", 0x40}}) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0285628, &(0x7f00000005c0)={0x980000, 0x0, 0x0, [], 0x0}) 20:16:52 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3354.249646] 9p: Unknown access argument  [ 3354.255700] 9pnet: Insufficient options for proto=fd [ 3354.323876] 9pnet: Insufficient options for proto=fd 20:16:56 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',acce']) 20:16:56 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:16:56 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:16:56 executing program 3: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r2 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) [ 3358.690507] 9pnet: Insufficient options for proto=fd [ 3358.790342] 9pnet: Insufficient options for proto=fd [ 3359.307350] 9p: Unknown access argument  20:17:01 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:01 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',acce']) 20:17:01 executing program 3: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) r2 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r5, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r5, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:17:01 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:01 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r1) r2 = dup3(r1, 0xffffffffffffffff, 0x40000) bind$isdn(r2, &(0x7f00000000c0)={0x22, 0x4, 0x61, 0x8, 0x81}, 0x6) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) r3 = openat$nvram(0xffffffffffffff9c, &(0x7f0000000000)='/dev/nvram\x00', 0x4000, 0x0) ioctl$VIDIOC_UNSUBSCRIBE_EVENT(r3, 0x4020565b, &(0x7f0000000080)={0x8001000, 0x13f, 0x2}) 20:17:01 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$inet_msfilter(r1, 0x0, 0x29, &(0x7f0000000040)={@rand_addr=0xce60, @dev={0xac, 0x14, 0x14, 0x1e}, 0x1, 0x6, [@dev={0xac, 0x14, 0x14, 0x1b}, @local, @initdev={0xac, 0x1e, 0x0, 0x0}, @dev={0xac, 0x14, 0x14, 0x1d}, @remote, @multicast2]}, 0x28) ioctl$VIDIOC_TRY_EXT_CTRLS(0xffffffffffffffff, 0xc0285628, &(0x7f0000000000)={0xa20000, 0x400, 0x0, [], 0x0}) [ 3363.314655] 9pnet: Insufficient options for proto=fd [ 3363.397342] 9pnet: Insufficient options for proto=fd [ 3363.485981] syz-executor.2: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3363.527839] syz-executor.2 cpuset=syz2 mems_allowed=0-1 [ 3363.549471] CPU: 0 PID: 8914 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3363.557329] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3363.566697] Call Trace: [ 3363.569303] dump_stack+0x142/0x197 [ 3363.572950] warn_alloc.cold+0x96/0x1af [ 3363.576942] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3363.581819] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3363.587117] __alloc_pages_slowpath+0x23c6/0x2930 [ 3363.591984] ? save_trace+0x290/0x290 [ 3363.595806] ? warn_alloc+0xf0/0xf0 [ 3363.599462] ? __might_sleep+0x93/0xb0 [ 3363.603366] __alloc_pages_nodemask+0x62c/0x7a0 [ 3363.608051] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3363.613083] ? ____cache_alloc_node+0x1be/0x1d0 [ 3363.617768] ? cache_grow_begin+0x335/0x400 [ 3363.622114] cache_grow_begin+0x80/0x400 [ 3363.626195] ? __cpuset_node_allowed+0xff/0x450 [ 3363.630880] fallback_alloc+0x1fd/0x2c0 [ 3363.634875] ____cache_alloc_node+0x1be/0x1d0 [ 3363.639385] kmem_cache_alloc_trace+0x213/0x790 [ 3363.644065] ? debug_smp_processor_id+0x1c/0x20 [ 3363.648745] ? perf_trace_lock+0x109/0x500 [ 3363.653000] kvm_dev_ioctl+0x163/0x1620 [ 3363.657001] ? kvm_put_kvm+0xaa0/0xaa0 [ 3363.660909] ? kvm_put_kvm+0xaa0/0xaa0 [ 3363.664819] do_vfs_ioctl+0x7ae/0x1060 [ 3363.668719] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3363.673489] ? lock_downgrade+0x740/0x740 [ 3363.677649] ? ioctl_preallocate+0x1c0/0x1c0 [ 3363.682206] ? __fget+0x237/0x370 [ 3363.685679] ? security_file_ioctl+0x89/0xb0 [ 3363.690102] SyS_ioctl+0x8f/0xc0 [ 3363.693462] ? do_vfs_ioctl+0x1060/0x1060 [ 3363.697616] do_syscall_64+0x1e8/0x640 [ 3363.701492] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3363.706341] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3363.711527] RIP: 0033:0x45a6f9 [ 3363.714701] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3363.722567] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3363.729836] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3363.737096] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3363.744354] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3363.751615] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3363.771057] 9p: Unknown access argument  [ 3363.814637] warn_alloc_show_mem: 1 callbacks suppressed [ 3363.814641] Mem-Info: [ 3363.827287] active_anon:1343600 inactive_anon:566 isolated_anon:12 [ 3363.827287] active_file:787 inactive_file:793 isolated_file:33 [ 3363.827287] unevictable:0 dirty:28 writeback:0 unstable:0 [ 3363.827287] slab_reclaimable:16974 slab_unreclaimable:114411 [ 3363.827287] mapped:53540 shmem:7461 pagetables:16527 bounce:0 [ 3363.827287] free:30982 free_pcp:75 free_cma:0 [ 3363.870020] Node 0 active_anon:1996192kB inactive_anon:1340kB active_file:32kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):4kB mapped:208932kB dirty:36kB writeback:0kB shmem:11968kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3363.906947] Node 1 active_anon:3378208kB inactive_anon:924kB active_file:2844kB inactive_file:2980kB unevictable:0kB isolated(anon):48kB isolated(file):132kB mapped:4928kB dirty:76kB writeback:0kB shmem:17876kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3363.949341] Node 0 DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3363.986339] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3363.993390] Node 0 DMA32 free:39212kB min:36380kB low:45472kB high:54564kB active_anon:1991744kB inactive_anon:1340kB active_file:288kB inactive_file:0kB unevictable:0kB writepending:36kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28780kB bounce:0kB free_pcp:120kB local_pcp:120kB free_cma:0kB [ 3364.031804] lowmem_reserve[]: 0 0 0 0 0 [ 3364.036049] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3364.069956] lowmem_reserve[]: 0 0 0 0 0 [ 3364.074818] Node 1 Normal free:75232kB min:53508kB low:66884kB high:80260kB active_anon:3378268kB inactive_anon:928kB active_file:2684kB inactive_file:2404kB unevictable:0kB writepending:168kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11520kB pagetables:37644kB bounce:0kB free_pcp:792kB local_pcp:116kB free_cma:0kB [ 3364.115352] lowmem_reserve[]: 0 0 0 0 0 [ 3364.119593] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3364.144189] Node 0 DMA32: 1602*4kB (UME) 2219*8kB (UME) 963*16kB (UME) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39568kB [ 3364.157939] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3364.169364] Node 1 Normal: 1536*4kB (UE) 578*8kB (UME) 1951*16kB (UMEH) 986*32kB (UMEH) 18*64kB (UM) 4*128kB (H) 1*256kB (H) 1*512kB (H) 0*1024kB 0*2048kB 0*4096kB = 75968kB [ 3364.185311] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3364.197818] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3364.206565] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3364.215807] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3364.227639] 8775 total pagecache pages [ 3364.231636] 0 pages in swap cache [ 3364.235098] Swap cache stats: add 0, delete 0, find 0/0 [ 3364.240696] Free swap = 0kB [ 3364.243723] Total swap = 0kB [ 3364.248924] 1965979 pages RAM [ 3364.252117] 0 pages HighMem/MovableOnly [ 3364.256093] 335858 pages reserved [ 3364.261841] 0 pages cma reserved 20:17:01 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3371.070058] audit: type=1400 audit(1576009029.436:124): avc: denied { map } for pid=8937 comm="sh" path="/bin/dash" dev="sda1" ino=1473 scontext=system_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:file_t:s0 tclass=file permissive=1 20:17:08 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:08 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',access']) 20:17:09 executing program 3: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:09 executing program 5: ioctl$VIDIOC_TRY_EXT_CTRLS(0xffffffffffffffff, 0xc0285628, &(0x7f00000005c0)={0xa20000, 0x0, 0x0, [], 0x0}) 20:17:09 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000000)={0x9}) r1 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/mls\x00', 0x0, 0x0) ioctl$DRM_IOCTL_AGP_RELEASE(r1, 0x6431) [ 3372.049248] 9pnet: Insufficient options for proto=fd 20:17:17 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:17 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:17 executing program 1: openat$vfio(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vfio/vfio\x00', 0x800, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) 20:17:17 executing program 3: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:17 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',access']) 20:17:17 executing program 5: r0 = syz_open_dev$vbi(&(0x7f0000000540)='/dev/vbi#\x00', 0x1, 0x2) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0285628, &(0x7f00000005c0)={0x980000, 0x0, 0x0, [], 0x0}) openat$md(0xffffffffffffff9c, &(0x7f0000000000)='/dev/md0\x00', 0x80000, 0x0) 20:17:19 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) socket$inet6_dccp(0xa, 0x6, 0x0) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) 20:17:19 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3380.672065] 9pnet: Insufficient options for proto=fd [ 3380.715911] syz-executor.2: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3380.716106] syz-executor.0: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3380.754040] syz-executor.2 cpuset=syz2 mems_allowed=0-1 [ 3380.764781] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 3380.771450] 9pnet: Insufficient options for proto=fd [ 3380.771641] CPU: 0 PID: 8983 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3380.784393] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3380.793757] Call Trace: [ 3380.796384] dump_stack+0x142/0x197 [ 3380.800024] warn_alloc.cold+0x96/0x1af [ 3380.804008] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3380.808869] ? __alloc_pages_direct_compact+0x290/0x380 [ 3380.814247] __alloc_pages_slowpath+0x23c6/0x2930 [ 3380.819102] ? save_trace+0x290/0x290 [ 3380.822911] ? warn_alloc+0xf0/0xf0 [ 3380.826557] ? __might_sleep+0x93/0xb0 [ 3380.830458] __alloc_pages_nodemask+0x62c/0x7a0 [ 3380.835145] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3380.840171] ? ____cache_alloc_node+0x1be/0x1d0 [ 3380.844844] ? cache_grow_begin+0x335/0x400 [ 3380.849167] cache_grow_begin+0x80/0x400 [ 3380.853223] ? __cpuset_node_allowed+0xff/0x450 [ 3380.857900] fallback_alloc+0x1fd/0x2c0 [ 3380.861896] ____cache_alloc_node+0x1be/0x1d0 [ 3380.866400] kmem_cache_alloc_trace+0x213/0x790 [ 3380.871085] ? debug_smp_processor_id+0x1c/0x20 [ 3380.875759] ? perf_trace_lock+0x109/0x500 [ 3380.880007] kvm_dev_ioctl+0x163/0x1620 [ 3380.883982] ? kvm_put_kvm+0xaa0/0xaa0 [ 3380.887877] ? kvm_put_kvm+0xaa0/0xaa0 [ 3380.891777] do_vfs_ioctl+0x7ae/0x1060 [ 3380.895671] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3380.900436] ? lock_downgrade+0x740/0x740 [ 3380.904592] ? ioctl_preallocate+0x1c0/0x1c0 [ 3380.909011] ? __fget+0x237/0x370 [ 3380.912478] ? security_file_ioctl+0x89/0xb0 [ 3380.916889] SyS_ioctl+0x8f/0xc0 [ 3380.920259] ? do_vfs_ioctl+0x1060/0x1060 [ 3380.924416] do_syscall_64+0x1e8/0x640 [ 3380.928303] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3380.933157] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3380.938348] RIP: 0033:0x45a6f9 [ 3380.941534] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3380.949251] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3380.956528] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3380.963796] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3380.971072] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3380.978347] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3380.985768] CPU: 1 PID: 8982 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3380.993578] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3381.002941] Call Trace: [ 3381.005540] dump_stack+0x142/0x197 [ 3381.009183] warn_alloc.cold+0x96/0x1af [ 3381.013174] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3381.018035] ? __alloc_pages_direct_compact+0x290/0x380 [ 3381.023436] __alloc_pages_slowpath+0x23c6/0x2930 [ 3381.025934] 9pnet: Insufficient options for proto=fd [ 3381.028295] ? save_trace+0x290/0x290 [ 3381.028317] ? warn_alloc+0xf0/0xf0 [ 3381.028342] ? __might_sleep+0x93/0xb0 [ 3381.037258] __alloc_pages_nodemask+0x62c/0x7a0 [ 3381.037276] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3381.037288] ? ____cache_alloc_node+0x1be/0x1d0 [ 3381.037301] ? cache_grow_begin+0x335/0x400 [ 3381.037317] cache_grow_begin+0x80/0x400 [ 3381.037327] ? __cpuset_node_allowed+0xff/0x450 [ 3381.037338] fallback_alloc+0x1fd/0x2c0 [ 3381.044830] ____cache_alloc_node+0x1be/0x1d0 [ 3381.044847] kmem_cache_alloc_trace+0x213/0x790 [ 3381.044857] ? debug_smp_processor_id+0x1c/0x20 [ 3381.044869] ? perf_trace_lock+0x109/0x500 [ 3381.044893] kvm_dev_ioctl+0x163/0x1620 [ 3381.054560] ? kvm_put_kvm+0xaa0/0xaa0 [ 3381.054580] ? kvm_put_kvm+0xaa0/0xaa0 [ 3381.054594] do_vfs_ioctl+0x7ae/0x1060 [ 3381.054608] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3381.054617] ? lock_downgrade+0x740/0x740 [ 3381.054629] ? ioctl_preallocate+0x1c0/0x1c0 [ 3381.067659] ? __fget+0x237/0x370 [ 3381.067680] ? security_file_ioctl+0x89/0xb0 [ 3381.067697] SyS_ioctl+0x8f/0xc0 [ 3381.067708] ? do_vfs_ioctl+0x1060/0x1060 [ 3381.067722] do_syscall_64+0x1e8/0x640 [ 3381.067739] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3381.067758] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3381.094413] RIP: 0033:0x45a6f9 [ 3381.094419] RSP: 002b:00007f063534ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 20:17:19 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3381.094430] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3381.094437] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3381.094443] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3381.094450] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063534b6d4 [ 3381.094457] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3381.247848] Mem-Info: [ 3381.248657] 9pnet: Insufficient options for proto=fd [ 3381.261974] active_anon:1343209 inactive_anon:567 isolated_anon:0 [ 3381.261974] active_file:1017 inactive_file:1003 isolated_file:1 [ 3381.261974] unevictable:0 dirty:22 writeback:0 unstable:0 [ 3381.261974] slab_reclaimable:17019 slab_unreclaimable:114188 [ 3381.261974] mapped:53887 shmem:7463 pagetables:16436 bounce:0 [ 3381.261974] free:31513 free_pcp:74 free_cma:0 20:17:19 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3381.301281] Node 0 active_anon:1995804kB inactive_anon:1328kB active_file:556kB inactive_file:800kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:209544kB dirty:36kB writeback:0kB shmem:11956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3381.350258] Node 1 active_anon:3376932kB inactive_anon:940kB active_file:2976kB inactive_file:2680kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:5004kB dirty:52kB writeback:0kB shmem:17896kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3381.414542] 9pnet: Insufficient options for proto=fd [ 3381.453879] Node 0 DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3381.481562] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3381.487812] Node 0 DMA32 free:38584kB min:36380kB low:45472kB high:54564kB active_anon:1991256kB inactive_anon:1328kB active_file:556kB inactive_file:800kB unevictable:0kB writepending:44kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28316kB bounce:0kB free_pcp:116kB local_pcp:0kB free_cma:0kB [ 3381.526375] lowmem_reserve[]: 0 0 0 0 0 [ 3381.546705] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3381.589440] lowmem_reserve[]: 0 0 0 0 0 [ 3381.593750] Node 1 Normal free:78220kB min:53508kB low:66884kB high:80260kB active_anon:3377392kB inactive_anon:932kB active_file:3232kB inactive_file:2348kB unevictable:0kB writepending:188kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11104kB pagetables:37376kB bounce:0kB free_pcp:976kB local_pcp:348kB free_cma:0kB [ 3381.624208] lowmem_reserve[]: 0 0 0 0 0 [ 3381.628237] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3381.647548] Node 0 DMA32: 1615*4kB (UME) 2129*8kB (UM) 950*16kB (UE) 3*32kB (U) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 38788kB [ 3381.670665] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3381.681576] Node 1 Normal: 1225*4kB (UME) 861*8kB (UME) 2018*16kB (UMEH) 1007*32kB (UMEH) 11*64kB (UM) 4*128kB (H) 1*256kB (H) 1*512kB (H) 0*1024kB 0*2048kB 0*4096kB = 78284kB [ 3381.699017] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3381.708024] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3381.717260] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3381.728197] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3381.743245] 9068 total pagecache pages [ 3381.747156] 0 pages in swap cache [ 3381.755044] Swap cache stats: add 0, delete 0, find 0/0 [ 3381.764363] Free swap = 0kB [ 3381.767406] Total swap = 0kB [ 3381.773109] 1965979 pages RAM [ 3381.776232] 0 pages HighMem/MovableOnly [ 3381.783938] 335858 pages reserved [ 3381.787404] 0 pages cma reserved 20:17:23 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:23 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:23 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_RUN(r3, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:23 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',access']) 20:17:23 executing program 5: r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/sequencer\x00', 0x40900, 0x0) getsockopt$TIPC_NODE_RECVQ_DEPTH(r0, 0x10f, 0x83, &(0x7f0000000100), &(0x7f0000000140)=0x4) r1 = syz_open_dev$vbi(&(0x7f0000000540)='/dev/vbi#\x00', 0x1, 0x2) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='attr/exec\x00') ioctl$VIDIOC_G_EDID(r2, 0xc0285628, &(0x7f0000000080)={0x0, 0x40, 0x7ff, [], &(0x7f0000000040)=0x3f}) ioctl$VIDIOC_TRY_EXT_CTRLS(r1, 0xc0285628, &(0x7f00000005c0)={0x980000, 0x0, 0x0, [], 0x0}) [ 3385.399251] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3385.414531] 9pnet: Insufficient options for proto=fd [ 3385.420180] 9pnet: Insufficient options for proto=fd [ 3385.441532] syz-executor.3: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3385.469507] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 3385.485709] syz-executor.3 cpuset=syz3 mems_allowed=0-1 [ 3385.493577] CPU: 0 PID: 9020 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3385.501395] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3385.510755] Call Trace: [ 3385.513464] dump_stack+0x142/0x197 [ 3385.517345] warn_alloc.cold+0x96/0x1af [ 3385.521323] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3385.526860] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3385.532135] __alloc_pages_slowpath+0x23c6/0x2930 [ 3385.536980] ? save_trace+0x290/0x290 [ 3385.540780] ? warn_alloc+0xf0/0xf0 [ 3385.544413] ? __might_sleep+0x93/0xb0 [ 3385.548307] __alloc_pages_nodemask+0x62c/0x7a0 [ 3385.552982] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3385.557995] ? ____cache_alloc_node+0x1be/0x1d0 [ 3385.562656] ? cache_grow_begin+0x335/0x400 [ 3385.566971] cache_grow_begin+0x80/0x400 [ 3385.571042] ? __cpuset_node_allowed+0xff/0x450 [ 3385.575708] fallback_alloc+0x1fd/0x2c0 [ 3385.579673] ____cache_alloc_node+0x1be/0x1d0 [ 3385.584162] kmem_cache_alloc_trace+0x213/0x790 [ 3385.588818] ? debug_smp_processor_id+0x1c/0x20 [ 3385.593475] ? perf_trace_lock+0x109/0x500 [ 3385.597736] kvm_dev_ioctl+0x163/0x1620 [ 3385.601718] ? kvm_put_kvm+0xaa0/0xaa0 [ 3385.605600] ? kvm_put_kvm+0xaa0/0xaa0 [ 3385.609480] do_vfs_ioctl+0x7ae/0x1060 [ 3385.613361] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3385.618107] ? lock_downgrade+0x740/0x740 [ 3385.622248] ? ioctl_preallocate+0x1c0/0x1c0 [ 3385.626658] ? __fget+0x237/0x370 [ 3385.630105] ? security_file_ioctl+0x89/0xb0 [ 3385.635261] SyS_ioctl+0x8f/0xc0 [ 3385.638618] ? do_vfs_ioctl+0x1060/0x1060 [ 3385.642758] do_syscall_64+0x1e8/0x640 [ 3385.646632] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3385.651474] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3385.656654] RIP: 0033:0x45a6f9 [ 3385.659830] RSP: 002b:00007f2bca452c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3385.667524] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3385.674779] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3385.682032] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3385.689285] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4536d4 20:17:24 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',access=']) [ 3385.696539] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3385.726549] CPU: 0 PID: 9018 Comm: syz-executor.3 Not tainted 4.14.158-syzkaller #0 [ 3385.734396] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3385.743750] Call Trace: [ 3385.746330] dump_stack+0x142/0x197 [ 3385.749952] warn_alloc.cold+0x96/0x1af [ 3385.753919] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3385.758780] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3385.764062] __alloc_pages_slowpath+0x23c6/0x2930 [ 3385.768927] ? save_trace+0x290/0x290 [ 3385.772728] ? warn_alloc+0xf0/0xf0 [ 3385.776353] ? __might_sleep+0x93/0xb0 [ 3385.780233] __alloc_pages_nodemask+0x62c/0x7a0 [ 3385.784899] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3385.789937] ? ____cache_alloc_node+0x1be/0x1d0 [ 3385.794606] ? cache_grow_begin+0x335/0x400 [ 3385.798950] cache_grow_begin+0x80/0x400 [ 3385.803006] ? __cpuset_node_allowed+0xff/0x450 [ 3385.807669] fallback_alloc+0x1fd/0x2c0 [ 3385.811635] ____cache_alloc_node+0x1be/0x1d0 [ 3385.816124] kmem_cache_alloc_trace+0x213/0x790 [ 3385.820795] ? debug_smp_processor_id+0x1c/0x20 [ 3385.825459] ? perf_trace_lock+0x109/0x500 [ 3385.829696] kvm_dev_ioctl+0x163/0x1620 [ 3385.833672] ? kvm_put_kvm+0xaa0/0xaa0 [ 3385.837558] ? kvm_put_kvm+0xaa0/0xaa0 [ 3385.841450] do_vfs_ioctl+0x7ae/0x1060 [ 3385.845334] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3385.850081] ? lock_downgrade+0x740/0x740 [ 3385.854224] ? ioctl_preallocate+0x1c0/0x1c0 [ 3385.858622] ? __fget+0x237/0x370 [ 3385.862070] ? security_file_ioctl+0x89/0xb0 [ 3385.866468] SyS_ioctl+0x8f/0xc0 [ 3385.869821] ? do_vfs_ioctl+0x1060/0x1060 [ 3385.873959] do_syscall_64+0x1e8/0x640 [ 3385.877832] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3385.882667] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3385.888014] RIP: 0033:0x45a6f9 [ 3385.891188] RSP: 002b:00007ff826292c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3385.898886] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3385.906142] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3385.913398] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 20:17:24 executing program 5: r0 = syz_open_dev$vbi(&(0x7f0000000540)='/dev/vbi#\x00', 0x1, 0x2) ioctl$VIDIOC_G_ENC_INDEX(r0, 0x8818564c, &(0x7f0000000600)) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0285628, &(0x7f00000005c0)={0x980000, 0x0, 0x0, [], 0x0}) [ 3385.920652] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff8262936d4 [ 3385.927908] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3386.031744] warn_alloc_show_mem: 1 callbacks suppressed [ 3386.031749] Mem-Info: [ 3386.039722] active_anon:1343511 inactive_anon:566 isolated_anon:0 [ 3386.039722] active_file:1687 inactive_file:1261 isolated_file:40 [ 3386.039722] unevictable:0 dirty:73 writeback:0 unstable:0 [ 3386.039722] slab_reclaimable:16998 slab_unreclaimable:114369 [ 3386.039722] mapped:54902 shmem:7463 pagetables:16497 bounce:0 [ 3386.039722] free:29876 free_pcp:177 free_cma:0 [ 3386.095322] Node 0 active_anon:1995768kB inactive_anon:1328kB active_file:128kB inactive_file:60kB unevictable:0kB isolated(anon):0kB isolated(file):68kB mapped:209080kB dirty:56kB writeback:0kB shmem:11956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3386.188123] Node 1 active_anon:3378208kB inactive_anon:928kB active_file:6512kB inactive_file:4288kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:9156kB dirty:212kB writeback:0kB shmem:17896kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3386.258562] Node 0 DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3386.309398] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3386.341211] Node 0 DMA32 free:39796kB min:36380kB low:45472kB high:54564kB active_anon:1991220kB inactive_anon:1328kB active_file:128kB inactive_file:60kB unevictable:0kB writepending:56kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28304kB bounce:0kB free_pcp:148kB local_pcp:120kB free_cma:0kB [ 3386.386292] lowmem_reserve[]: 0 0 0 0 0 [ 3386.403054] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3386.431235] lowmem_reserve[]: 0 0 0 0 0 [ 3386.435407] Node 1 Normal free:75404kB min:53508kB low:66884kB high:80260kB active_anon:3378308kB inactive_anon:928kB active_file:3444kB inactive_file:3220kB unevictable:0kB writepending:212kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11424kB pagetables:37912kB bounce:0kB free_pcp:668kB local_pcp:0kB free_cma:0kB [ 3386.489419] lowmem_reserve[]: 0 0 0 0 0 [ 3386.510238] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3386.537389] Node 0 DMA32: 1701*4kB (UME) 2203*8kB (UME) 961*16kB (UME) 6*32kB (UM) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39996kB [ 3386.574208] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3386.605299] Node 1 Normal: 1603*4kB (UME) 950*8kB (UME) 1971*16kB (UMEH) 1010*32kB (UMEH) 4*64kB (UM) 4*128kB (H) 1*256kB (H) 1*512kB (H) 0*1024kB 0*2048kB 0*4096kB = 79404kB [ 3386.637231] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3386.665717] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3386.679572] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3386.704794] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3386.723515] 8087 total pagecache pages [ 3386.732138] 0 pages in swap cache [ 3386.738994] Swap cache stats: add 0, delete 0, find 0/0 [ 3386.751206] Free swap = 0kB [ 3386.757612] Total swap = 0kB [ 3386.763600] 1965979 pages RAM [ 3386.766759] 0 pages HighMem/MovableOnly [ 3386.771078] 335858 pages reserved [ 3386.774678] 0 pages cma reserved 20:17:30 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:30 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:30 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:30 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',access=']) 20:17:30 executing program 5: r0 = syz_open_dev$vbi(&(0x7f0000000040)='/dev/vbi#\x00', 0x0, 0x2) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0285628, &(0x7f00000005c0)={0x980000, 0x0, 0x0, [], 0x0}) r1 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000000)='/selinux/policy\x00', 0x0, 0x0) ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000200)={0x3, 0x1, &(0x7f0000000080)=""/201, &(0x7f0000000180)=""/92, &(0x7f0000000600)=""/4096, 0x2000}) [ 3392.555324] 9pnet: Insufficient options for proto=fd [ 3392.585455] 9pnet: Insufficient options for proto=fd [ 3392.783309] syz-executor.2: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3392.813877] syz-executor.3: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3392.838776] syz-executor.2 cpuset=syz2 mems_allowed=0-1 [ 3392.852666] syz-executor.3 cpuset=syz3 mems_allowed=0-1 [ 3392.858930] CPU: 1 PID: 9058 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3392.866767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3392.876112] Call Trace: [ 3392.878695] dump_stack+0x142/0x197 [ 3392.882320] warn_alloc.cold+0x96/0x1af [ 3392.886285] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3392.891123] ? __alloc_pages_direct_compact+0x290/0x380 [ 3392.896476] __alloc_pages_slowpath+0x23c6/0x2930 [ 3392.901318] ? save_trace+0x290/0x290 [ 3392.905198] ? warn_alloc+0xf0/0xf0 [ 3392.908822] ? __might_sleep+0x93/0xb0 [ 3392.912699] __alloc_pages_nodemask+0x62c/0x7a0 [ 3392.917356] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3392.922358] ? ____cache_alloc_node+0x1be/0x1d0 [ 3392.927019] ? cache_grow_begin+0x335/0x400 [ 3392.931333] cache_grow_begin+0x80/0x400 [ 3392.935384] ? __cpuset_node_allowed+0xff/0x450 [ 3392.940053] fallback_alloc+0x1fd/0x2c0 [ 3392.944017] ____cache_alloc_node+0x1be/0x1d0 [ 3392.948501] kmem_cache_alloc_trace+0x213/0x790 [ 3392.953169] ? debug_smp_processor_id+0x1c/0x20 [ 3392.957826] ? perf_trace_lock+0x109/0x500 [ 3392.962066] kvm_dev_ioctl+0x163/0x1620 [ 3392.966052] ? kvm_put_kvm+0xaa0/0xaa0 [ 3392.969947] ? kvm_put_kvm+0xaa0/0xaa0 [ 3392.973841] do_vfs_ioctl+0x7ae/0x1060 [ 3392.977719] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3392.982468] ? lock_downgrade+0x740/0x740 [ 3392.986614] ? ioctl_preallocate+0x1c0/0x1c0 [ 3392.991014] ? __fget+0x237/0x370 [ 3392.994465] ? security_file_ioctl+0x89/0xb0 [ 3392.998867] SyS_ioctl+0x8f/0xc0 [ 3393.002234] ? do_vfs_ioctl+0x1060/0x1060 [ 3393.006398] do_syscall_64+0x1e8/0x640 [ 3393.010296] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3393.015140] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3393.020324] RIP: 0033:0x45a6f9 [ 3393.023512] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3393.031209] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3393.038499] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3393.045763] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3393.053034] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3393.060296] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3393.088863] CPU: 1 PID: 9059 Comm: syz-executor.3 Not tainted 4.14.158-syzkaller #0 [ 3393.096714] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3393.106090] Call Trace: [ 3393.106109] dump_stack+0x142/0x197 [ 3393.106127] warn_alloc.cold+0x96/0x1af [ 3393.106139] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3393.106162] ? __alloc_pages_direct_compact+0x290/0x380 [ 3393.106177] __alloc_pages_slowpath+0x23c6/0x2930 [ 3393.106198] ? save_trace+0x290/0x290 [ 3393.106215] ? warn_alloc+0xf0/0xf0 [ 3393.106242] ? __might_sleep+0x93/0xb0 [ 3393.121262] __alloc_pages_nodemask+0x62c/0x7a0 [ 3393.121280] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3393.121295] ? ____cache_alloc_node+0x1be/0x1d0 [ 3393.121306] ? cache_grow_begin+0x335/0x400 [ 3393.121320] cache_grow_begin+0x80/0x400 [ 3393.121331] ? __cpuset_node_allowed+0xff/0x450 [ 3393.121342] fallback_alloc+0x1fd/0x2c0 [ 3393.174177] ____cache_alloc_node+0x1be/0x1d0 [ 3393.178713] kmem_cache_alloc_trace+0x213/0x790 [ 3393.183392] ? debug_smp_processor_id+0x1c/0x20 [ 3393.188079] ? perf_trace_lock+0x109/0x500 [ 3393.192368] kvm_dev_ioctl+0x163/0x1620 [ 3393.196349] ? kvm_put_kvm+0xaa0/0xaa0 [ 3393.200233] ? kvm_put_kvm+0xaa0/0xaa0 [ 3393.204114] do_vfs_ioctl+0x7ae/0x1060 [ 3393.208000] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3393.212752] ? lock_downgrade+0x740/0x740 [ 3393.216894] ? ioctl_preallocate+0x1c0/0x1c0 [ 3393.221297] ? __fget+0x237/0x370 [ 3393.224746] ? security_file_ioctl+0x89/0xb0 [ 3393.229150] SyS_ioctl+0x8f/0xc0 [ 3393.232531] ? do_vfs_ioctl+0x1060/0x1060 [ 3393.236687] do_syscall_64+0x1e8/0x640 [ 3393.240579] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3393.245426] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3393.250609] RIP: 0033:0x45a6f9 [ 3393.253802] RSP: 002b:00007ff826292c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3393.261529] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3393.268788] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3393.276135] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3393.283392] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff8262936d4 [ 3393.290670] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3393.314016] warn_alloc_show_mem: 1 callbacks suppressed [ 3393.314021] Mem-Info: [ 3393.343948] active_anon:1343598 inactive_anon:570 isolated_anon:0 [ 3393.343948] active_file:570 inactive_file:953 isolated_file:34 [ 3393.343948] unevictable:0 dirty:12 writeback:0 unstable:0 [ 3393.343948] slab_reclaimable:16977 slab_unreclaimable:114233 [ 3393.343948] mapped:53311 shmem:7465 pagetables:16537 bounce:0 [ 3393.343948] free:31368 free_pcp:47 free_cma:0 [ 3393.450436] Node 0 active_anon:1995836kB inactive_anon:1328kB active_file:4kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208948kB dirty:0kB writeback:0kB shmem:11956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3393.479402] Node 1 active_anon:3378340kB inactive_anon:944kB active_file:2140kB inactive_file:2120kB unevictable:0kB isolated(anon):0kB isolated(file):100kB mapped:3308kB dirty:128kB writeback:0kB shmem:17896kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3393.517281] Node 0 DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3393.550639] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3393.555998] Node 0 DMA32 free:39652kB min:36380kB low:45472kB high:54564kB active_anon:1991288kB inactive_anon:1328kB active_file:4kB inactive_file:4kB unevictable:0kB writepending:0kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28312kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB [ 3393.591955] lowmem_reserve[]: 0 0 0 0 0 [ 3393.596155] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3393.627326] lowmem_reserve[]: 0 0 0 0 0 [ 3393.631485] Node 1 Normal free:77944kB min:53508kB low:66884kB high:80260kB active_anon:3378540kB inactive_anon:944kB active_file:2468kB inactive_file:2584kB unevictable:0kB writepending:80kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11232kB pagetables:37732kB bounce:0kB free_pcp:648kB local_pcp:0kB free_cma:0kB [ 3393.667456] lowmem_reserve[]: 0 0 0 0 0 [ 3393.671551] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3393.695145] Node 0 DMA32: 1644*4kB (UME) 2202*8kB (UME) 962*16kB (UME) 5*32kB (UM) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39744kB [ 3393.716351] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3393.757596] Node 1 Normal: 1725*4kB (UME) 919*8kB (UME) 1933*16kB (UMEH) 1020*32kB (UEH) 3*64kB (U) 4*128kB (H) 1*256kB (H) 1*512kB (H) 0*1024kB 0*2048kB 0*4096kB = 79292kB [ 3393.797609] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3393.809475] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3393.825207] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3393.835263] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3393.849671] 8026 total pagecache pages [ 3393.854584] 0 pages in swap cache [ 3393.858061] Swap cache stats: add 0, delete 0, find 0/0 [ 3393.871370] Free swap = 0kB [ 3393.874515] Total swap = 0kB [ 3393.877541] 1965979 pages RAM [ 3393.886509] 0 pages HighMem/MovableOnly [ 3393.891501] 335858 pages reserved [ 3393.895047] 0 pages cma reserved 20:17:35 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:35 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:35 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',access=']) 20:17:35 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:35 executing program 5: r0 = syz_open_dev$vbi(&(0x7f0000000540)='/dev/vbi#\x00', 0x1, 0x2) prctl$PR_SET_THP_DISABLE(0x29, 0x0) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0285628, &(0x7f00000005c0)={0x980000, 0x0, 0x0, [], 0x0}) [ 3397.934589] syz-executor.2: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3397.966273] 9pnet: Insufficient options for proto=fd [ 3397.976843] syz-executor.2 cpuset=syz2 mems_allowed=0-1 [ 3397.994675] CPU: 1 PID: 9076 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3398.002522] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3398.011898] Call Trace: [ 3398.011919] dump_stack+0x142/0x197 [ 3398.011938] warn_alloc.cold+0x96/0x1af [ 3398.011950] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3398.011970] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3398.011983] __alloc_pages_slowpath+0x23c6/0x2930 [ 3398.012004] ? save_trace+0x290/0x290 [ 3398.022315] 9pnet: Insufficient options for proto=fd [ 3398.027019] ? warn_alloc+0xf0/0xf0 [ 3398.027049] ? __might_sleep+0x93/0xb0 [ 3398.027063] __alloc_pages_nodemask+0x62c/0x7a0 [ 3398.027077] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3398.027092] ? ____cache_alloc_node+0x1be/0x1d0 [ 3398.037206] ? cache_grow_begin+0x335/0x400 [ 3398.037225] cache_grow_begin+0x80/0x400 [ 3398.037237] ? __cpuset_node_allowed+0xff/0x450 [ 3398.037250] fallback_alloc+0x1fd/0x2c0 [ 3398.058362] ____cache_alloc_node+0x1be/0x1d0 [ 3398.089613] kmem_cache_alloc_trace+0x213/0x790 [ 3398.094295] ? debug_smp_processor_id+0x1c/0x20 [ 3398.098976] ? perf_trace_lock+0x109/0x500 [ 3398.103227] kvm_dev_ioctl+0x163/0x1620 [ 3398.107217] ? kvm_put_kvm+0xaa0/0xaa0 [ 3398.111109] ? kvm_put_kvm+0xaa0/0xaa0 [ 3398.114989] do_vfs_ioctl+0x7ae/0x1060 [ 3398.118871] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3398.123626] ? lock_downgrade+0x740/0x740 [ 3398.127769] ? ioctl_preallocate+0x1c0/0x1c0 [ 3398.132171] ? __fget+0x237/0x370 [ 3398.135636] ? security_file_ioctl+0x89/0xb0 [ 3398.140050] SyS_ioctl+0x8f/0xc0 [ 3398.143407] ? do_vfs_ioctl+0x1060/0x1060 [ 3398.147545] do_syscall_64+0x1e8/0x640 [ 3398.151415] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3398.156255] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3398.161431] RIP: 0033:0x45a6f9 [ 3398.164604] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3398.172299] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3398.179556] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3398.186809] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3398.194062] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3398.201318] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3398.302276] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3398.323701] warn_alloc_show_mem: 1 callbacks suppressed [ 3398.323705] Mem-Info: [ 3398.333149] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 3398.349481] active_anon:1343591 inactive_anon:567 isolated_anon:12 [ 3398.349481] active_file:572 inactive_file:1092 isolated_file:45 [ 3398.349481] unevictable:0 dirty:43 writeback:6 unstable:0 [ 3398.349481] slab_reclaimable:16976 slab_unreclaimable:114268 [ 3398.349481] mapped:53603 shmem:7462 pagetables:16511 bounce:0 [ 3398.349481] free:31049 free_pcp:224 free_cma:0 [ 3398.389818] CPU: 0 PID: 9083 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3398.397664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3398.407003] Call Trace: [ 3398.409581] dump_stack+0x142/0x197 [ 3398.413216] warn_alloc.cold+0x96/0x1af [ 3398.417177] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3398.422026] ? __alloc_pages_direct_compact+0x290/0x380 [ 3398.427378] __alloc_pages_slowpath+0x23c6/0x2930 [ 3398.432213] ? save_trace+0x290/0x290 [ 3398.436004] ? warn_alloc+0xf0/0xf0 [ 3398.439625] ? __might_sleep+0x93/0xb0 [ 3398.443499] __alloc_pages_nodemask+0x62c/0x7a0 [ 3398.448156] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3398.453166] ? ____cache_alloc_node+0x1be/0x1d0 [ 3398.457832] ? cache_grow_begin+0x335/0x400 [ 3398.462143] cache_grow_begin+0x80/0x400 [ 3398.466188] ? __cpuset_node_allowed+0xff/0x450 [ 3398.470844] fallback_alloc+0x1fd/0x2c0 [ 3398.474807] ____cache_alloc_node+0x1be/0x1d0 [ 3398.479294] kmem_cache_alloc_trace+0x213/0x790 [ 3398.483948] ? debug_smp_processor_id+0x1c/0x20 [ 3398.488617] ? perf_trace_lock+0x109/0x500 [ 3398.492847] kvm_dev_ioctl+0x163/0x1620 [ 3398.496832] ? kvm_put_kvm+0xaa0/0xaa0 [ 3398.500761] ? kvm_put_kvm+0xaa0/0xaa0 [ 3398.504642] do_vfs_ioctl+0x7ae/0x1060 [ 3398.508522] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3398.513266] ? lock_downgrade+0x740/0x740 [ 3398.517413] ? ioctl_preallocate+0x1c0/0x1c0 [ 3398.521822] ? __fget+0x237/0x370 [ 3398.525288] ? security_file_ioctl+0x89/0xb0 [ 3398.529793] SyS_ioctl+0x8f/0xc0 [ 3398.533154] ? do_vfs_ioctl+0x1060/0x1060 [ 3398.537297] do_syscall_64+0x1e8/0x640 [ 3398.541176] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3398.546015] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3398.551193] RIP: 0033:0x45a6f9 [ 3398.554380] RSP: 002b:00007f2bca431c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3398.562085] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3398.569349] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3398.576617] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 3398.583876] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4326d4 [ 3398.591131] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3398.601108] Node 0 active_anon:1995864kB inactive_anon:1328kB active_file:192kB inactive_file:2304kB unevictable:0kB isolated(anon):0kB isolated(file):36kB mapped:210868kB dirty:12kB writeback:0kB shmem:11956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3398.633675] Node 1 active_anon:3378500kB inactive_anon:940kB active_file:1744kB inactive_file:2820kB unevictable:0kB isolated(anon):48kB isolated(file):16kB mapped:3244kB dirty:160kB writeback:0kB shmem:17892kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3398.665153] Node 0 DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3398.692614] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3398.702087] Node 0 DMA32 free:37028kB min:36380kB low:45472kB high:54564kB active_anon:1991316kB inactive_anon:1328kB active_file:192kB inactive_file:2304kB unevictable:0kB writepending:12kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28412kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3398.738852] lowmem_reserve[]: 0 0 0 0 0 [ 3398.743527] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3398.769877] lowmem_reserve[]: 0 0 0 0 0 [ 3398.774257] Node 1 Normal free:76680kB min:53508kB low:66884kB high:80260kB active_anon:3378500kB inactive_anon:940kB active_file:1444kB inactive_file:2600kB unevictable:0kB writepending:184kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11520kB pagetables:37632kB bounce:0kB free_pcp:476kB local_pcp:224kB free_cma:0kB [ 3398.808834] lowmem_reserve[]: 0 0 0 0 0 [ 3398.813119] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3398.830614] Node 0 DMA32: 1213*4kB (UME) 2124*8kB (UME) 946*16kB (UE) 3*32kB (UME) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 37076kB [ 3398.844647] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3398.855725] Node 1 Normal: 1436*4kB (UME) 790*8kB (UME) 1890*16kB (UMEH) 1018*32kB (UMEH) 8*64kB (UM) 4*128kB (H) 1*256kB (H) 1*512kB (H) 0*1024kB 0*2048kB 0*4096kB = 76672kB [ 3398.874814] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3398.898984] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3398.916331] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3398.927222] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3398.948663] 8770 total pagecache pages [ 3398.956609] 0 pages in swap cache [ 3398.966789] Swap cache stats: add 0, delete 0, find 0/0 [ 3398.977830] Free swap = 0kB [ 3398.984563] Total swap = 0kB [ 3398.987670] 1965979 pages RAM [ 3398.992117] 0 pages HighMem/MovableOnly [ 3398.996158] 335858 pages reserved [ 3398.999600] 0 pages cma reserved 20:17:40 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:40 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r5, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYBLOB="2c6163636573733d06"]) 20:17:40 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:40 executing program 3: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3402.088196] 9pnet: Insufficient options for proto=fd [ 3402.250836] 9pnet: Insufficient options for proto=fd [ 3402.258100] 9pnet: Insufficient options for proto=fd [ 3402.307030] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3402.330800] syz-executor.0: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3402.349123] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 3402.354630] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 3402.354660] CPU: 0 PID: 9102 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3402.367995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3402.377461] Call Trace: [ 3402.380070] dump_stack+0x142/0x197 [ 3402.383827] warn_alloc.cold+0x96/0x1af [ 3402.387947] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3402.392820] ? __alloc_pages_direct_compact+0x290/0x380 [ 3402.398310] __alloc_pages_slowpath+0x23c6/0x2930 [ 3402.403166] ? save_trace+0x290/0x290 [ 3402.406976] ? warn_alloc+0xf0/0xf0 [ 3402.410620] ? __might_sleep+0x93/0xb0 [ 3402.414528] __alloc_pages_nodemask+0x62c/0x7a0 [ 3402.419358] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3402.424391] ? ____cache_alloc_node+0x1be/0x1d0 [ 3402.429098] ? cache_grow_begin+0x335/0x400 [ 3402.433423] cache_grow_begin+0x80/0x400 [ 3402.437478] ? __cpuset_node_allowed+0xff/0x450 [ 3402.442256] fallback_alloc+0x1fd/0x2c0 [ 3402.446234] ____cache_alloc_node+0x1be/0x1d0 [ 3402.450730] kmem_cache_alloc_trace+0x213/0x790 [ 3402.455397] ? debug_smp_processor_id+0x1c/0x20 [ 3402.460064] ? perf_trace_lock+0x109/0x500 [ 3402.464312] kvm_dev_ioctl+0x163/0x1620 [ 3402.468290] ? kvm_put_kvm+0xaa0/0xaa0 [ 3402.472193] ? kvm_put_kvm+0xaa0/0xaa0 [ 3402.476300] do_vfs_ioctl+0x7ae/0x1060 [ 3402.480301] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3402.485088] ? lock_downgrade+0x740/0x740 [ 3402.489254] ? ioctl_preallocate+0x1c0/0x1c0 [ 3402.493670] ? __fget+0x237/0x370 [ 3402.497135] ? security_file_ioctl+0x89/0xb0 [ 3402.501547] SyS_ioctl+0x8f/0xc0 [ 3402.504914] ? do_vfs_ioctl+0x1060/0x1060 [ 3402.509061] do_syscall_64+0x1e8/0x640 [ 3402.512947] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3402.517794] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3402.523075] RIP: 0033:0x45a6f9 [ 3402.526259] RSP: 002b:00007f063534ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3402.534113] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3402.541467] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3402.548891] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3402.556364] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063534b6d4 [ 3402.563825] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3402.587757] CPU: 1 PID: 9103 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3402.595760] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3402.605401] Call Trace: [ 3402.608013] dump_stack+0x142/0x197 [ 3402.611823] warn_alloc.cold+0x96/0x1af [ 3402.615815] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3402.620681] ? __alloc_pages_direct_compact+0x290/0x380 [ 3402.626062] __alloc_pages_slowpath+0x23c6/0x2930 [ 3402.630933] ? save_trace+0x290/0x290 [ 3402.634757] ? warn_alloc+0xf0/0xf0 [ 3402.638413] ? __might_sleep+0x93/0xb0 [ 3402.642318] __alloc_pages_nodemask+0x62c/0x7a0 [ 3402.647003] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3402.652044] ? ____cache_alloc_node+0x1be/0x1d0 [ 3402.656729] ? cache_grow_begin+0x335/0x400 [ 3402.661072] cache_grow_begin+0x80/0x400 [ 3402.665153] ? __cpuset_node_allowed+0xff/0x450 [ 3402.670099] fallback_alloc+0x1fd/0x2c0 [ 3402.674088] ____cache_alloc_node+0x1be/0x1d0 [ 3402.678604] kmem_cache_alloc_trace+0x213/0x790 [ 3402.683392] ? debug_smp_processor_id+0x1c/0x20 [ 3402.688079] ? perf_trace_lock+0x109/0x500 [ 3402.692342] kvm_dev_ioctl+0x163/0x1620 [ 3402.696340] ? kvm_put_kvm+0xaa0/0xaa0 [ 3402.700249] ? kvm_put_kvm+0xaa0/0xaa0 [ 3402.704244] do_vfs_ioctl+0x7ae/0x1060 [ 3402.708306] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3402.713087] ? lock_downgrade+0x740/0x740 [ 3402.717270] ? ioctl_preallocate+0x1c0/0x1c0 [ 3402.721831] ? __fget+0x237/0x370 [ 3402.725310] ? security_file_ioctl+0x89/0xb0 [ 3402.729878] SyS_ioctl+0x8f/0xc0 [ 3402.733254] ? do_vfs_ioctl+0x1060/0x1060 [ 3402.737422] do_syscall_64+0x1e8/0x640 [ 3402.741309] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3402.746159] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3402.751348] RIP: 0033:0x45a6f9 [ 3402.754535] RSP: 002b:00007f2bca452c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3402.762396] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3402.769677] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3402.777015] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3402.784330] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4536d4 [ 3402.791600] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3402.928745] warn_alloc_show_mem: 1 callbacks suppressed [ 3402.928749] Mem-Info: [ 3402.952118] active_anon:1343543 inactive_anon:566 isolated_anon:12 [ 3402.952118] active_file:195 inactive_file:289 isolated_file:24 [ 3402.952118] unevictable:0 dirty:32 writeback:25 unstable:0 [ 3402.952118] slab_reclaimable:16956 slab_unreclaimable:114366 [ 3402.952118] mapped:52612 shmem:7461 pagetables:16481 bounce:0 [ 3402.952118] free:32141 free_pcp:271 free_cma:0 [ 3403.002978] Node 0 active_anon:1995784kB inactive_anon:1328kB active_file:96kB inactive_file:236kB unevictable:0kB isolated(anon):0kB isolated(file):48kB mapped:209276kB dirty:8kB writeback:0kB shmem:11956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3403.042907] Node 1 active_anon:3378484kB inactive_anon:944kB active_file:904kB inactive_file:936kB unevictable:0kB isolated(anon):0kB isolated(file):48kB mapped:880kB dirty:92kB writeback:108kB shmem:17896kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3403.077298] Node 0 DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3403.140428] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3403.147661] Node 0 DMA32 free:39644kB min:36380kB low:45472kB high:54564kB active_anon:1991236kB inactive_anon:1328kB active_file:68kB inactive_file:144kB unevictable:0kB writepending:0kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28304kB bounce:0kB free_pcp:56kB local_pcp:0kB free_cma:0kB [ 3403.185158] lowmem_reserve[]: 0 0 0 0 0 [ 3403.189788] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3403.222162] lowmem_reserve[]: 0 0 0 0 0 [ 3403.226205] Node 1 Normal free:80320kB min:53508kB low:66884kB high:80260kB active_anon:3378484kB inactive_anon:944kB active_file:804kB inactive_file:932kB unevictable:0kB writepending:76kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11264kB pagetables:37636kB bounce:0kB free_pcp:636kB local_pcp:68kB free_cma:0kB [ 3403.265030] lowmem_reserve[]: 0 0 0 0 0 [ 3403.269961] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3403.293186] Node 0 DMA32: 1666*4kB (UME) 2208*8kB (UME) 960*16kB (UME) 8*32kB (UME) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39944kB [ 3403.313839] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3403.326534] Node 1 Normal: 1792*4kB (UME) 866*8kB (UME) 1940*16kB (UMEH) 1045*32kB (UMEH) 16*64kB (UM) 4*128kB (H) 1*256kB (H) 1*512kB (H) 0*1024kB 0*2048kB 0*4096kB = 80880kB [ 3403.385738] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3403.398543] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3403.409031] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3403.418086] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3403.427724] 7896 total pagecache pages [ 3403.439404] 0 pages in swap cache [ 3403.443830] Swap cache stats: add 0, delete 0, find 0/0 [ 3403.449390] Free swap = 0kB [ 3403.457905] Total swap = 0kB [ 3403.461987] 1965979 pages RAM [ 3403.465113] 0 pages HighMem/MovableOnly [ 3403.470197] 335858 pages reserved [ 3403.473669] 0 pages cma reserved 20:17:45 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:45 executing program 3: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:45 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r5, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYBLOB="2c6163636573733d06"]) 20:17:45 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3407.210752] 9pnet: Insufficient options for proto=fd [ 3407.287465] 9pnet: Insufficient options for proto=fd [ 3407.386695] 9pnet: Insufficient options for proto=fd [ 3407.433663] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3407.448264] syz-executor.2: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3407.469140] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 3407.471284] syz-executor.2 cpuset=syz2 mems_allowed=0-1 [ 3407.474866] CPU: 0 PID: 9124 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3407.487965] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3407.497408] Call Trace: [ 3407.500006] dump_stack+0x142/0x197 [ 3407.503646] warn_alloc.cold+0x96/0x1af [ 3407.507625] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3407.512475] ? __alloc_pages_direct_compact+0x290/0x380 [ 3407.517837] __alloc_pages_slowpath+0x23c6/0x2930 [ 3407.522689] ? save_trace+0x290/0x290 [ 3407.526502] ? warn_alloc+0xf0/0xf0 [ 3407.530144] ? __might_sleep+0x93/0xb0 [ 3407.534027] __alloc_pages_nodemask+0x62c/0x7a0 [ 3407.538684] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3407.543688] ? ____cache_alloc_node+0x1be/0x1d0 [ 3407.548346] ? cache_grow_begin+0x335/0x400 [ 3407.552674] cache_grow_begin+0x80/0x400 [ 3407.556723] ? __cpuset_node_allowed+0xff/0x450 [ 3407.561381] fallback_alloc+0x1fd/0x2c0 [ 3407.565347] ____cache_alloc_node+0x1be/0x1d0 [ 3407.569832] kmem_cache_alloc_trace+0x213/0x790 [ 3407.574507] ? debug_smp_processor_id+0x1c/0x20 [ 3407.579166] ? perf_trace_lock+0x109/0x500 [ 3407.583398] kvm_dev_ioctl+0x163/0x1620 [ 3407.587370] ? kvm_put_kvm+0xaa0/0xaa0 [ 3407.591248] ? kvm_put_kvm+0xaa0/0xaa0 [ 3407.595133] do_vfs_ioctl+0x7ae/0x1060 [ 3407.599009] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3407.603752] ? lock_downgrade+0x740/0x740 [ 3407.607888] ? ioctl_preallocate+0x1c0/0x1c0 [ 3407.612287] ? __fget+0x237/0x370 [ 3407.615738] ? security_file_ioctl+0x89/0xb0 [ 3407.620135] SyS_ioctl+0x8f/0xc0 [ 3407.623490] ? do_vfs_ioctl+0x1060/0x1060 [ 3407.627631] do_syscall_64+0x1e8/0x640 [ 3407.631505] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3407.636344] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3407.641520] RIP: 0033:0x45a6f9 [ 3407.644696] RSP: 002b:00007f2bca452c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3407.652394] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3407.659741] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3407.667118] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3407.674394] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4536d4 [ 3407.681665] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3407.694187] CPU: 1 PID: 9122 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3407.702002] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3407.702008] Call Trace: [ 3407.702023] dump_stack+0x142/0x197 [ 3407.702040] warn_alloc.cold+0x96/0x1af [ 3407.702051] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3407.702072] ? __alloc_pages_direct_compact+0x290/0x380 [ 3407.731740] __alloc_pages_slowpath+0x23c6/0x2930 [ 3407.736580] ? save_trace+0x290/0x290 [ 3407.740373] ? warn_alloc+0xf0/0xf0 [ 3407.744000] ? __might_sleep+0x93/0xb0 [ 3407.747891] __alloc_pages_nodemask+0x62c/0x7a0 [ 3407.752551] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3407.757557] ? ____cache_alloc_node+0x1be/0x1d0 [ 3407.762214] ? cache_grow_begin+0x335/0x400 [ 3407.766525] cache_grow_begin+0x80/0x400 [ 3407.770571] ? __cpuset_node_allowed+0xff/0x450 [ 3407.775228] fallback_alloc+0x1fd/0x2c0 [ 3407.779204] ____cache_alloc_node+0x1be/0x1d0 [ 3407.783755] kmem_cache_alloc_trace+0x213/0x790 [ 3407.788440] ? debug_smp_processor_id+0x1c/0x20 [ 3407.793123] ? perf_trace_lock+0x109/0x500 [ 3407.797358] kvm_dev_ioctl+0x163/0x1620 [ 3407.801327] ? kvm_put_kvm+0xaa0/0xaa0 [ 3407.805208] ? kvm_put_kvm+0xaa0/0xaa0 [ 3407.809086] do_vfs_ioctl+0x7ae/0x1060 [ 3407.813002] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3407.817775] ? lock_downgrade+0x740/0x740 [ 3407.821941] ? ioctl_preallocate+0x1c0/0x1c0 [ 3407.826343] ? __fget+0x237/0x370 [ 3407.829794] ? security_file_ioctl+0x89/0xb0 [ 3407.834199] SyS_ioctl+0x8f/0xc0 [ 3407.837556] ? do_vfs_ioctl+0x1060/0x1060 [ 3407.842235] do_syscall_64+0x1e8/0x640 [ 3407.846126] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3407.850980] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3407.856158] RIP: 0033:0x45a6f9 [ 3407.859334] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3407.867044] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3407.874307] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3407.881567] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3407.888828] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3407.896105] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3407.946842] warn_alloc_show_mem: 1 callbacks suppressed [ 3407.946847] Mem-Info: [ 3407.967088] active_anon:1343567 inactive_anon:564 isolated_anon:12 [ 3407.967088] active_file:746 inactive_file:786 isolated_file:21 [ 3407.967088] unevictable:0 dirty:11 writeback:30 unstable:0 [ 3407.967088] slab_reclaimable:16962 slab_unreclaimable:114578 [ 3407.967088] mapped:53335 shmem:7461 pagetables:16449 bounce:0 [ 3407.967088] free:31062 free_pcp:222 free_cma:0 [ 3408.068877] Node 0 active_anon:1995904kB inactive_anon:1328kB active_file:16kB inactive_file:356kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:209164kB dirty:8kB writeback:12kB shmem:11960kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3408.107780] Node 1 active_anon:3378352kB inactive_anon:928kB active_file:2136kB inactive_file:2120kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:3408kB dirty:104kB writeback:4kB shmem:17888kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3408.145505] Node 0 DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3408.179230] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3408.184719] Node 0 DMA32 free:39196kB min:36380kB low:45472kB high:54564kB active_anon:1991276kB inactive_anon:1328kB active_file:72kB inactive_file:300kB unevictable:0kB writepending:8kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28412kB bounce:0kB free_pcp:244kB local_pcp:112kB free_cma:0kB [ 3408.221653] lowmem_reserve[]: 0 0 0 0 0 [ 3408.227953] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3408.263232] lowmem_reserve[]: 0 0 0 0 0 [ 3408.268035] Node 1 Normal free:77484kB min:53508kB low:66884kB high:80260kB active_anon:3378352kB inactive_anon:928kB active_file:1704kB inactive_file:2120kB unevictable:0kB writepending:108kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11200kB pagetables:37588kB bounce:0kB free_pcp:864kB local_pcp:184kB free_cma:0kB [ 3408.304717] lowmem_reserve[]: 0 0 0 0 0 [ 3408.309575] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3408.333175] Node 0 DMA32: 1513*4kB (UM) 2197*8kB (UME) 957*16kB (UME) 8*32kB (ME) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39196kB [ 3408.354737] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3408.368710] Node 1 Normal: 1735*4kB (UME) 865*8kB (UME) 1915*16kB (UMEH) 1034*32kB (UMEH) 6*64kB (U) 4*128kB (H) 1*256kB (H) 1*512kB (H) 0*1024kB 0*2048kB 0*4096kB = 79252kB [ 3408.392708] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3408.405818] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3408.417566] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3408.433824] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3408.446298] 8158 total pagecache pages [ 3408.455105] 0 pages in swap cache [ 3408.458660] Swap cache stats: add 0, delete 0, find 0/0 [ 3408.467361] Free swap = 0kB [ 3408.475568] Total swap = 0kB [ 3408.478744] 1965979 pages RAM [ 3408.485115] 0 pages HighMem/MovableOnly [ 3408.489175] 335858 pages reserved [ 3408.496887] 0 pages cma reserved 20:17:49 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:49 executing program 3: socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:49 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r5, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYBLOB="2c6163636573733d06"]) 20:17:49 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3411.150209] syz-executor.0: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3411.164999] 9pnet: Insufficient options for proto=fd [ 3411.171447] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3411.172751] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 3411.187759] CPU: 0 PID: 9138 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3411.195555] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3411.204913] Call Trace: [ 3411.207514] dump_stack+0x142/0x197 [ 3411.211154] warn_alloc.cold+0x96/0x1af [ 3411.215131] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3411.218745] syz-executor.4 cpuset= [ 3411.219991] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3411.220009] __alloc_pages_slowpath+0x23c6/0x2930 [ 3411.220030] ? save_trace+0x290/0x290 [ 3411.220047] ? warn_alloc+0xf0/0xf0 [ 3411.220071] ? __might_sleep+0x93/0xb0 [ 3411.220083] __alloc_pages_nodemask+0x62c/0x7a0 [ 3411.220100] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3411.242154] syz4 [ 3411.245029] ? ____cache_alloc_node+0x1be/0x1d0 [ 3411.261335] ? cache_grow_begin+0x335/0x400 [ 3411.265681] cache_grow_begin+0x80/0x400 [ 3411.269751] ? __cpuset_node_allowed+0xff/0x450 [ 3411.274429] fallback_alloc+0x1fd/0x2c0 [ 3411.277454] mems_allowed=0-1 [ 3411.278541] ____cache_alloc_node+0x1be/0x1d0 [ 3411.278557] kmem_cache_alloc_trace+0x213/0x790 [ 3411.278567] ? debug_smp_processor_id+0x1c/0x20 [ 3411.278620] ? perf_trace_lock+0x109/0x500 [ 3411.278641] kvm_dev_ioctl+0x163/0x1620 [ 3411.303764] ? kvm_put_kvm+0xaa0/0xaa0 [ 3411.307658] ? kvm_put_kvm+0xaa0/0xaa0 [ 3411.309426] 9pnet: Insufficient options for proto=fd [ 3411.311547] do_vfs_ioctl+0x7ae/0x1060 [ 3411.311564] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3411.311578] ? lock_downgrade+0x740/0x740 [ 3411.311589] ? ioctl_preallocate+0x1c0/0x1c0 [ 3411.311602] ? __fget+0x237/0x370 [ 3411.311621] ? security_file_ioctl+0x89/0xb0 [ 3411.311634] SyS_ioctl+0x8f/0xc0 [ 3411.311643] ? do_vfs_ioctl+0x1060/0x1060 [ 3411.311660] do_syscall_64+0x1e8/0x640 [ 3411.311672] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3411.357922] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3411.363123] RIP: 0033:0x45a6f9 [ 3411.366313] RSP: 002b:00007f063534ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3411.374016] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3411.381287] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3411.388561] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3411.395828] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063534b6d4 [ 3411.403205] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3411.421567] CPU: 1 PID: 9137 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3411.424119] 9pnet: Insufficient options for proto=fd [ 3411.429400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3411.429405] Call Trace: [ 3411.429424] dump_stack+0x142/0x197 [ 3411.429442] warn_alloc.cold+0x96/0x1af [ 3411.453993] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3411.458831] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3411.464100] __alloc_pages_slowpath+0x23c6/0x2930 [ 3411.468937] ? save_trace+0x290/0x290 [ 3411.472727] ? warn_alloc+0xf0/0xf0 [ 3411.476351] ? __might_sleep+0x93/0xb0 [ 3411.480226] __alloc_pages_nodemask+0x62c/0x7a0 [ 3411.484885] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3411.489889] ? ____cache_alloc_node+0x1be/0x1d0 [ 3411.494545] ? cache_grow_begin+0x335/0x400 [ 3411.498854] cache_grow_begin+0x80/0x400 [ 3411.502920] ? __cpuset_node_allowed+0xff/0x450 [ 3411.507574] fallback_alloc+0x1fd/0x2c0 [ 3411.511536] ____cache_alloc_node+0x1be/0x1d0 [ 3411.516030] kmem_cache_alloc_trace+0x213/0x790 [ 3411.520735] ? debug_smp_processor_id+0x1c/0x20 [ 3411.525389] ? perf_trace_lock+0x109/0x500 [ 3411.529613] kvm_dev_ioctl+0x163/0x1620 [ 3411.533586] ? kvm_put_kvm+0xaa0/0xaa0 [ 3411.537465] ? kvm_put_kvm+0xaa0/0xaa0 [ 3411.541340] do_vfs_ioctl+0x7ae/0x1060 [ 3411.545228] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3411.549974] ? lock_downgrade+0x740/0x740 [ 3411.554117] ? ioctl_preallocate+0x1c0/0x1c0 [ 3411.558515] ? __fget+0x237/0x370 [ 3411.561962] ? security_file_ioctl+0x89/0xb0 [ 3411.566364] SyS_ioctl+0x8f/0xc0 [ 3411.569737] ? do_vfs_ioctl+0x1060/0x1060 [ 3411.573877] do_syscall_64+0x1e8/0x640 [ 3411.577752] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3411.582593] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3411.587785] RIP: 0033:0x45a6f9 [ 3411.590976] RSP: 002b:00007f2bca452c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 20:17:50 executing program 5: r0 = syz_open_dev$vbi(&(0x7f0000000540)='/dev/vbi#\x00', 0x1, 0x2) r1 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vsock\x00', 0x0, 0x0) r2 = openat$vimc1(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/video1\x00', 0x2, 0x0) ioctl$VIDIOC_S_FMT(r2, 0xc0d05605, &(0x7f0000000200)={0x5, @pix={0x7, 0x7, 0x32315241, 0x2, 0x6, 0x9, 0x0, 0x8, 0x1, 0x4, 0x0, 0x4}}) getsockopt$IP6T_SO_GET_REVISION_MATCH(r1, 0x29, 0x44, &(0x7f0000000040)={'ah\x00'}, &(0x7f0000000080)=0x1e) ioctl$UI_BEGIN_FF_UPLOAD(0xffffffffffffffff, 0xc06855c8, &(0x7f0000000140)={0xa, 0x1, {0x51, 0x3f4, 0xff, {0xf33, 0x90e9}, {0x81, 0x6}, @cond=[{0x8001, 0x2, 0x7, 0xffff, 0x3, 0x1}, {0xffff, 0x0, 0x2, 0x1, 0x401, 0x27}]}, {0x54, 0x4, 0x3f, {0x1000, 0x9}, {0x800, 0xa2f}, @ramp={0x200, 0xfff, {0xe1ac, 0x100, 0x3f, 0x9}}}}) ftruncate(r0, 0xf61) ioctl$NS_GET_NSTYPE(r0, 0xb703, 0x0) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0285628, &(0x7f00000005c0)={0x980000, 0xb09, 0x0, [], 0x0}) [ 3411.598682] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3411.605938] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3411.613197] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3411.620466] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4536d4 [ 3411.627728] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3411.672563] warn_alloc_show_mem: 1 callbacks suppressed [ 3411.672568] Mem-Info: [ 3411.682040] active_anon:1343574 inactive_anon:567 isolated_anon:12 [ 3411.682040] active_file:1708 inactive_file:1165 isolated_file:62 [ 3411.682040] unevictable:0 dirty:30 writeback:22 unstable:0 [ 3411.682040] slab_reclaimable:16979 slab_unreclaimable:114384 [ 3411.682040] mapped:54529 shmem:7462 pagetables:16508 bounce:0 [ 3411.682040] free:29980 free_pcp:102 free_cma:0 [ 3411.718667] Node 0 active_anon:1995804kB inactive_anon:1328kB active_file:16kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208948kB dirty:12kB writeback:16kB shmem:11956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3411.747191] Node 1 active_anon:3378492kB inactive_anon:940kB active_file:6548kB inactive_file:4532kB unevictable:0kB isolated(anon):48kB isolated(file):248kB mapped:8768kB dirty:108kB writeback:72kB shmem:17892kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3411.776352] syz-executor.2: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3411.777760] Node 0 DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3411.807351] syz-executor.2 cpuset= [ 3411.845035] lowmem_reserve[]: [ 3411.850999] syz2 [ 3411.859504] mems_allowed=0-1 [ 3411.862324] 0 2569 2569 2569 2569 [ 3411.871656] Node 0 DMA32 free:39700kB min:36380kB low:45472kB high:54564kB active_anon:1991256kB inactive_anon:1328kB active_file:16kB inactive_file:0kB unevictable:0kB writepending:28kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28304kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3411.873041] CPU: 1 PID: 9142 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3411.908295] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3411.913866] lowmem_reserve[]: [ 3411.917650] Call Trace: [ 3411.917672] dump_stack+0x142/0x197 [ 3411.917692] warn_alloc.cold+0x96/0x1af [ 3411.917707] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3411.920961] 0 [ 3411.923381] ? __alloc_pages_direct_compact+0x290/0x380 [ 3411.923398] __alloc_pages_slowpath+0x23c6/0x2930 [ 3411.923423] ? save_trace+0x290/0x290 [ 3411.923441] ? warn_alloc+0xf0/0xf0 [ 3411.927188] 0 [ 3411.931013] ? __might_sleep+0x93/0xb0 [ 3411.931034] __alloc_pages_nodemask+0x62c/0x7a0 [ 3411.931049] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3411.931061] ? ____cache_alloc_node+0x1be/0x1d0 [ 3411.931072] ? cache_grow_begin+0x335/0x400 [ 3411.931087] cache_grow_begin+0x80/0x400 [ 3411.936801] 0 [ 3411.937707] ? __cpuset_node_allowed+0xff/0x450 [ 3411.937721] fallback_alloc+0x1fd/0x2c0 [ 3411.937740] ____cache_alloc_node+0x1be/0x1d0 [ 3411.937755] kmem_cache_alloc_trace+0x213/0x790 [ 3411.937767] ? debug_smp_processor_id+0x1c/0x20 [ 3411.949830] 0 [ 3411.951745] ? perf_trace_lock+0x109/0x500 [ 3411.951768] kvm_dev_ioctl+0x163/0x1620 [ 3411.951789] ? kvm_put_kvm+0xaa0/0xaa0 [ 3411.951808] ? kvm_put_kvm+0xaa0/0xaa0 [ 3411.951819] do_vfs_ioctl+0x7ae/0x1060 [ 3411.951834] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3411.951843] ? lock_downgrade+0x740/0x740 [ 3411.951855] ? ioctl_preallocate+0x1c0/0x1c0 [ 3411.951869] ? __fget+0x237/0x370 [ 3411.951889] ? security_file_ioctl+0x89/0xb0 [ 3411.951903] SyS_ioctl+0x8f/0xc0 [ 3411.951913] ? do_vfs_ioctl+0x1060/0x1060 [ 3411.951927] do_syscall_64+0x1e8/0x640 [ 3411.951937] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3411.951958] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3411.951967] RIP: 0033:0x45a6f9 [ 3411.951973] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3411.951985] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3411.951990] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3411.951996] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3411.952002] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3411.952008] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3412.139347] 0 [ 3412.142341] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3412.171273] lowmem_reserve[]: 0 0 0 0 0 [ 3412.175572] Node 1 Normal free:71704kB min:53508kB low:66884kB high:80260kB active_anon:3378584kB inactive_anon:944kB active_file:4096kB inactive_file:5916kB unevictable:0kB writepending:340kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11232kB pagetables:37740kB bounce:0kB free_pcp:960kB local_pcp:304kB free_cma:0kB [ 3412.206376] lowmem_reserve[]: 0 0 0 0 0 [ 3412.210681] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3412.227493] Node 0 DMA32: 1663*4kB (UME) 2209*8kB (UME) 957*16kB (UME) 10*32kB (UME) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39956kB [ 3412.241692] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3412.252917] Node 1 Normal: 619*4kB (UME) 749*8kB (UME) 1832*16kB (UMEH) 1016*32kB (UMEH) 0*64kB 5*128kB (MH) 1*256kB (H) 1*512kB (H) 0*1024kB 0*2048kB 0*4096kB = 71700kB [ 3412.268673] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3412.278921] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3412.297962] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3412.307146] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3412.324251] 9734 total pagecache pages [ 3412.328272] 0 pages in swap cache [ 3412.333743] Swap cache stats: add 0, delete 0, find 0/0 [ 3412.340598] Free swap = 0kB [ 3412.343759] Total swap = 0kB [ 3412.347001] 1965979 pages RAM [ 3412.357168] 0 pages HighMem/MovableOnly [ 3412.361381] 335858 pages reserved [ 3412.364972] 0 pages cma reserved 20:17:55 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r3, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:55 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:55 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r5, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:55 executing program 3: socketpair$unix(0x1, 0x2, 0x0, 0x0) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:55 executing program 5: r0 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x1, 0x2) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0285628, &(0x7f00000005c0)={0x980000, 0x0, 0x0, [], 0x0}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r1) close(r1) [ 3417.278316] 9pnet: Insufficient options for proto=fd 20:17:55 executing program 5: r0 = syz_open_dev$vbi(&(0x7f0000000000)='/dev/vbi#\x00', 0x0, 0x2) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0285628, &(0x7f00000005c0)={0x980000, 0x0, 0x0, [], 0x0}) 20:17:55 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3417.406198] syz-executor.2: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3417.426943] syz-executor.3: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3417.427987] 9pnet: Insufficient options for proto=fd [ 3417.451263] syz-executor.2 cpuset=syz2 mems_allowed=0-1 [ 3417.457289] syz-executor.0: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3417.458630] CPU: 1 PID: 9166 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3417.473140] syz-executor.3 cpuset= [ 3417.475929] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3417.475935] Call Trace: [ 3417.475955] dump_stack+0x142/0x197 [ 3417.475971] warn_alloc.cold+0x96/0x1af [ 3417.475981] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3417.476002] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3417.476016] __alloc_pages_slowpath+0x23c6/0x2930 [ 3417.476037] ? save_trace+0x290/0x290 [ 3417.476056] ? warn_alloc+0xf0/0xf0 [ 3417.476081] ? __might_sleep+0x93/0xb0 [ 3417.476094] __alloc_pages_nodemask+0x62c/0x7a0 [ 3417.486356] syz-executor.0 cpuset= [ 3417.488979] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3417.488992] ? ____cache_alloc_node+0x1be/0x1d0 [ 3417.489003] ? cache_grow_begin+0x335/0x400 [ 3417.489016] cache_grow_begin+0x80/0x400 [ 3417.489027] ? __cpuset_node_allowed+0xff/0x450 [ 3417.489039] fallback_alloc+0x1fd/0x2c0 [ 3417.489055] ____cache_alloc_node+0x1be/0x1d0 [ 3417.489068] kmem_cache_alloc_trace+0x213/0x790 [ 3417.489077] ? debug_smp_processor_id+0x1c/0x20 [ 3417.489090] ? perf_trace_lock+0x109/0x500 [ 3417.493406] 9pnet: Insufficient options for proto=fd [ 3417.495304] kvm_dev_ioctl+0x163/0x1620 [ 3417.495323] ? kvm_put_kvm+0xaa0/0xaa0 [ 3417.500051] syz3 [ 3417.504122] ? kvm_put_kvm+0xaa0/0xaa0 [ 3417.515879] syz0 [ 3417.518019] do_vfs_ioctl+0x7ae/0x1060 [ 3417.527253] mems_allowed=0-1 [ 3417.530191] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3417.530205] ? lock_downgrade+0x740/0x740 [ 3417.530220] ? ioctl_preallocate+0x1c0/0x1c0 [ 3417.530234] ? __fget+0x237/0x370 [ 3417.530252] ? security_file_ioctl+0x89/0xb0 [ 3417.530263] SyS_ioctl+0x8f/0xc0 [ 3417.530272] ? do_vfs_ioctl+0x1060/0x1060 [ 3417.530287] do_syscall_64+0x1e8/0x640 [ 3417.530296] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3417.530315] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3417.530323] RIP: 0033:0x45a6f9 [ 3417.530329] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3417.530340] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3417.530346] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3417.530352] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3417.530358] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3417.530363] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3417.541598] warn_alloc_show_mem: 2 callbacks suppressed [ 3417.541602] Mem-Info: [ 3417.552918] mems_allowed=0-1 [ 3417.575378] CPU: 0 PID: 9171 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3417.591930] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3417.591936] Call Trace: [ 3417.591952] dump_stack+0x142/0x197 [ 3417.591969] warn_alloc.cold+0x96/0x1af [ 3417.591979] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3417.592001] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3417.592015] __alloc_pages_slowpath+0x23c6/0x2930 [ 3417.592037] ? save_trace+0x290/0x290 [ 3417.594118] active_anon:1343544 inactive_anon:566 isolated_anon:0 [ 3417.594118] active_file:1571 inactive_file:1553 isolated_file:32 [ 3417.594118] unevictable:0 dirty:63 writeback:0 unstable:0 [ 3417.594118] slab_reclaimable:16988 slab_unreclaimable:114214 [ 3417.594118] mapped:54802 shmem:7461 pagetables:16503 bounce:0 [ 3417.594118] free:29857 free_pcp:255 free_cma:0 [ 3417.597877] ? warn_alloc+0xf0/0xf0 [ 3417.597902] ? __might_sleep+0x93/0xb0 [ 3417.597915] __alloc_pages_nodemask+0x62c/0x7a0 [ 3417.611305] Node 0 active_anon:1996052kB inactive_anon:1336kB active_file:128kB inactive_file:896kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:209196kB dirty:16kB writeback:0kB shmem:11964kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3417.611587] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3417.615869] Node 1 active_anon:3378124kB inactive_anon:928kB active_file:6156kB inactive_file:5316kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:10012kB dirty:236kB writeback:0kB shmem:17880kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3417.620108] ? ____cache_alloc_node+0x1be/0x1d0 [ 3417.620122] ? cache_grow_begin+0x335/0x400 [ 3417.620137] cache_grow_begin+0x80/0x400 [ 3417.620147] ? __cpuset_node_allowed+0xff/0x450 [ 3417.620160] fallback_alloc+0x1fd/0x2c0 [ 3417.620176] ____cache_alloc_node+0x1be/0x1d0 [ 3417.620191] kmem_cache_alloc_trace+0x213/0x790 [ 3417.620199] ? debug_smp_processor_id+0x1c/0x20 [ 3417.620212] ? perf_trace_lock+0x109/0x500 [ 3417.620232] kvm_dev_ioctl+0x163/0x1620 [ 3417.620251] ? kvm_put_kvm+0xaa0/0xaa0 [ 3417.620270] ? kvm_put_kvm+0xaa0/0xaa0 [ 3417.630647] Node 0 [ 3417.631462] do_vfs_ioctl+0x7ae/0x1060 [ 3417.631476] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3417.631486] ? lock_downgrade+0x740/0x740 [ 3417.631500] ? ioctl_preallocate+0x1c0/0x1c0 [ 3417.637579] DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3417.639523] ? __fget+0x237/0x370 [ 3417.639545] ? security_file_ioctl+0x89/0xb0 [ 3417.639559] SyS_ioctl+0x8f/0xc0 [ 3417.651386] lowmem_reserve[]: [ 3417.652744] ? do_vfs_ioctl+0x1060/0x1060 [ 3417.652761] do_syscall_64+0x1e8/0x640 [ 3417.652771] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3417.652792] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3417.665230] 0 [ 3417.667755] RIP: 0033:0x45a6f9 [ 3417.667765] RSP: 002b:00007f0635329c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3417.667781] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3417.667790] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3417.677443] 2569 [ 3417.682427] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 3417.682434] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063532a6d4 [ 3417.682441] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3417.684420] CPU: 0 PID: 9165 Comm: syz-executor.3 Not tainted 4.14.158-syzkaller #0 [ 3417.707319] 2569 [ 3417.707964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3417.707969] Call Trace: [ 3417.707985] dump_stack+0x142/0x197 [ 3417.708002] warn_alloc.cold+0x96/0x1af [ 3418.069708] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3418.074547] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3418.079808] __alloc_pages_slowpath+0x23c6/0x2930 [ 3418.084641] ? save_trace+0x290/0x290 [ 3418.088432] ? warn_alloc+0xf0/0xf0 [ 3418.092052] ? __might_sleep+0x93/0xb0 [ 3418.095948] __alloc_pages_nodemask+0x62c/0x7a0 [ 3418.100644] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3418.105666] ? ____cache_alloc_node+0x1be/0x1d0 [ 3418.110335] ? cache_grow_begin+0x335/0x400 [ 3418.114653] cache_grow_begin+0x80/0x400 [ 3418.118713] ? __cpuset_node_allowed+0xff/0x450 [ 3418.123382] fallback_alloc+0x1fd/0x2c0 [ 3418.127361] ____cache_alloc_node+0x1be/0x1d0 [ 3418.131858] kmem_cache_alloc_trace+0x213/0x790 [ 3418.136543] ? debug_smp_processor_id+0x1c/0x20 [ 3418.141204] ? perf_trace_lock+0x109/0x500 [ 3418.145441] kvm_dev_ioctl+0x163/0x1620 [ 3418.149518] ? kvm_put_kvm+0xaa0/0xaa0 [ 3418.153413] ? kvm_put_kvm+0xaa0/0xaa0 [ 3418.157320] do_vfs_ioctl+0x7ae/0x1060 [ 3418.161205] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3418.165958] ? lock_downgrade+0x740/0x740 [ 3418.170096] ? ioctl_preallocate+0x1c0/0x1c0 [ 3418.174507] ? __fget+0x237/0x370 [ 3418.177962] ? security_file_ioctl+0x89/0xb0 [ 3418.182367] SyS_ioctl+0x8f/0xc0 [ 3418.185724] ? do_vfs_ioctl+0x1060/0x1060 [ 3418.189875] do_syscall_64+0x1e8/0x640 [ 3418.193760] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3418.198713] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3418.203905] RIP: 0033:0x45a6f9 [ 3418.207175] RSP: 002b:00007ff826292c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3418.214879] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3418.222145] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 3418.229404] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3418.236657] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff8262936d4 [ 3418.243915] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3418.256508] 2569 2569 20:17:56 executing program 5: r0 = syz_open_dev$vbi(&(0x7f0000000540)='/dev/vbi#\x00', 0x1, 0x2) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0285628, &(0x7f00000005c0)={0x980000, 0x0, 0x0, [], 0x0}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) chdir(&(0x7f0000000040)='./file0\x00') ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$VIDIOC_G_STD(r2, 0x80085617, &(0x7f0000000000)) [ 3418.261351] 9pnet: Insufficient options for proto=fd [ 3418.282039] Node 0 DMA32 free:37956kB min:36380kB low:45472kB high:54564kB active_anon:1991576kB inactive_anon:1336kB active_file:200kB inactive_file:868kB unevictable:0kB writepending:28kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28704kB bounce:0kB free_pcp:188kB local_pcp:108kB free_cma:0kB [ 3418.354704] lowmem_reserve[]: 0 0 0 0 0 [ 3418.362290] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3418.398219] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3418.424003] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 3418.429625] CPU: 1 PID: 9174 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3418.437428] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3418.446790] Call Trace: [ 3418.449387] dump_stack+0x142/0x197 [ 3418.453025] warn_alloc.cold+0x96/0x1af [ 3418.457001] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3418.461860] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3418.461877] __alloc_pages_slowpath+0x23c6/0x2930 [ 3418.461898] ? save_trace+0x290/0x290 [ 3418.471992] ? warn_alloc+0xf0/0xf0 [ 3418.472016] ? __might_sleep+0x93/0xb0 [ 3418.472029] __alloc_pages_nodemask+0x62c/0x7a0 [ 3418.472044] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3418.472056] ? ____cache_alloc_node+0x1be/0x1d0 [ 3418.472066] ? cache_grow_begin+0x335/0x400 [ 3418.472079] cache_grow_begin+0x80/0x400 [ 3418.472090] ? __cpuset_node_allowed+0xff/0x450 [ 3418.472102] fallback_alloc+0x1fd/0x2c0 [ 3418.472116] ____cache_alloc_node+0x1be/0x1d0 [ 3418.472137] kmem_cache_alloc_trace+0x213/0x790 [ 3418.472147] ? debug_smp_processor_id+0x1c/0x20 [ 3418.472157] ? perf_trace_lock+0x109/0x500 [ 3418.472180] kvm_dev_ioctl+0x163/0x1620 [ 3418.472199] ? kvm_put_kvm+0xaa0/0xaa0 [ 3418.472216] ? kvm_put_kvm+0xaa0/0xaa0 [ 3418.544664] do_vfs_ioctl+0x7ae/0x1060 [ 3418.548564] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3418.553327] ? lock_downgrade+0x740/0x740 [ 3418.557483] ? ioctl_preallocate+0x1c0/0x1c0 [ 3418.561893] ? __fget+0x237/0x370 [ 3418.565343] ? security_file_ioctl+0x89/0xb0 [ 3418.569743] SyS_ioctl+0x8f/0xc0 [ 3418.573122] ? do_vfs_ioctl+0x1060/0x1060 [ 3418.577259] do_syscall_64+0x1e8/0x640 [ 3418.581146] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3418.585984] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3418.591303] RIP: 0033:0x45a6f9 [ 3418.594501] RSP: 002b:00007f2bca431c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 20:17:56 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r5, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3418.602195] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3418.609453] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 3418.616714] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 3418.623975] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4326d4 [ 3418.631236] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3418.652299] 9pnet: Insufficient options for proto=fd [ 3418.659570] lowmem_reserve[]: 0 0 0 0 0 [ 3418.665668] Node 1 Normal free:68364kB min:53508kB low:66884kB high:80260kB active_anon:3378260kB inactive_anon:920kB active_file:7608kB inactive_file:5552kB unevictable:0kB writepending:300kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11392kB pagetables:37372kB bounce:0kB free_pcp:840kB local_pcp:160kB free_cma:0kB 20:17:57 executing program 5: r0 = syz_open_dev$vbi(&(0x7f0000000000)='#\x00', 0x1, 0x2) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat(r2, &(0x7f0000000140)='./file0\x00', 0x4401, 0x4) ioctl$TIOCSRS485(r3, 0x542f, &(0x7f0000000040)={0xffffffff, 0x3, 0x2}) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0285628, &(0x7f00000005c0)={0x9e0000, 0x0, 0xc, [], 0x0}) ioctl$EVIOCGPHYS(r3, 0x80404507, &(0x7f0000000080)=""/85) 20:17:57 executing program 1: r0 = msgget$private(0x0, 0x0) msgsnd(r0, 0x0, 0x0, 0x0) msgctl$MSG_INFO(r0, 0xc, &(0x7f0000000080)=""/242) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r1, 0x4b4d, &(0x7f0000000040)) [ 3418.703400] lowmem_reserve[]: 0 0 0 0 0 [ 3418.719149] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3418.775053] Node 0 DMA32: 1449*4kB (UM) 2114*8kB (UME) 939*16kB (UME) 9*32kB (UME) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 38020kB [ 3418.800724] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3418.801349] warn_alloc_show_mem: 1 callbacks suppressed [ 3418.801352] Mem-Info: [ 3418.818386] Node 1 Normal: 784*4kB (UME) 444*8kB (UME) 1786*16kB (UEH) 986*32kB (UEH) 0*64kB 4*128kB (H) 1*256kB (H) 1*512kB (H) 0*1024kB 0*2048kB 0*4096kB = 68096kB [ 3418.820608] active_anon:1343646 inactive_anon:564 isolated_anon:0 [ 3418.820608] active_file:1795 inactive_file:1610 isolated_file:28 [ 3418.820608] unevictable:0 dirty:58 writeback:24 unstable:0 [ 3418.820608] slab_reclaimable:17001 slab_unreclaimable:114493 [ 3418.820608] mapped:55131 shmem:7461 pagetables:16482 bounce:0 [ 3418.820608] free:29167 free_pcp:310 free_cma:0 20:17:57 executing program 5: r0 = syz_open_dev$vbi(&(0x7f0000000540)='/dev/vbi#\x00', 0x1, 0x2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$VIDIOC_G_OUTPUT(r2, 0x8004562e, &(0x7f0000000000)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_RESUME(r4, 0x4147, 0x0) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0285628, &(0x7f00000005c0)={0x980000, 0x0, 0x0, [], 0x0}) [ 3418.856226] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3418.885657] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3418.936907] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3418.978788] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3419.006355] 10560 total pagecache pages [ 3419.015803] 0 pages in swap cache [ 3419.035050] Swap cache stats: add 0, delete 0, find 0/0 [ 3419.047958] Node 0 active_anon:1996124kB inactive_anon:1336kB active_file:200kB inactive_file:868kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:209464kB dirty:24kB writeback:4kB shmem:11968kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3419.054867] Free swap = 0kB [ 3419.093462] Total swap = 0kB [ 3419.096584] 1965979 pages RAM [ 3419.099755] 0 pages HighMem/MovableOnly [ 3419.109723] 335858 pages reserved [ 3419.114242] 0 pages cma reserved 20:17:57 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$inet_buf(r1, 0x0, 0x4, &(0x7f0000000000)="a08bfacab775fe6c04009bf78ecdbb63c4e0cb045304050eea0dc9657be0c4b7da8af6ce79c9532202a93111903bbe2db355376f59c014db55", 0x39) r2 = syz_open_dev$vbi(&(0x7f0000000540)='/dev/vbi#\x00', 0x1, 0x2) ioctl$VIDIOC_TRY_EXT_CTRLS(r2, 0xc0285628, &(0x7f00000005c0)={0x390000, 0x2, 0x1, [], 0x0}) [ 3419.122689] Node 1 active_anon:3378312kB inactive_anon:924kB active_file:3680kB inactive_file:4692kB unevictable:0kB isolated(anon):0kB isolated(file):132kB mapped:7564kB dirty:264kB writeback:92kB shmem:17876kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3419.153021] Node 0 DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3419.197113] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3419.207805] Node 0 DMA32 free:38020kB min:36380kB low:45472kB high:54564kB active_anon:1991408kB inactive_anon:1336kB active_file:200kB inactive_file:868kB unevictable:0kB writepending:32kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28452kB bounce:0kB free_pcp:552kB local_pcp:348kB free_cma:0kB [ 3419.246032] lowmem_reserve[]: 0 0 0 0 0 [ 3419.252319] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3419.285035] lowmem_reserve[]: 0 0 0 0 0 [ 3419.289126] Node 1 Normal free:72344kB min:53508kB low:66884kB high:80260kB active_anon:3378212kB inactive_anon:924kB active_file:3800kB inactive_file:4712kB unevictable:0kB writepending:356kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11232kB pagetables:37576kB bounce:0kB free_pcp:1288kB local_pcp:644kB free_cma:0kB [ 3419.324624] lowmem_reserve[]: 0 0 0 0 0 [ 3419.329264] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3419.347248] Node 0 DMA32: 1449*4kB (UM) 2114*8kB (UME) 939*16kB (UME) 9*32kB (UME) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 38020kB [ 3419.362803] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3419.397879] Node 1 Normal: 1299*4kB (UME) 443*8kB (UME) 1845*16kB (UMEH) 1017*32kB (UMEH) 2*64kB (U) 11*128kB (UH) 1*256kB (H) 1*512kB (H) 0*1024kB 0*2048kB 0*4096kB = 73108kB [ 3419.417634] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3419.438649] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3419.455933] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3419.466791] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3419.482791] 9070 total pagecache pages [ 3419.486767] 0 pages in swap cache [ 3419.494349] Swap cache stats: add 0, delete 0, find 0/0 [ 3419.499771] Free swap = 0kB [ 3419.505809] Total swap = 0kB [ 3419.508901] 1965979 pages RAM [ 3419.515940] 0 pages HighMem/MovableOnly [ 3419.519980] 335858 pages reserved [ 3419.526513] 0 pages cma reserved 20:17:59 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r5, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:59 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:59 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r1, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:17:59 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) fsetxattr$security_smack_transmute(r0, &(0x7f0000000000)='security.SMACK64TRANSMUTE\x00', &(0x7f0000000080)='TRUE', 0x4, 0x2) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) 20:17:59 executing program 5: r0 = syz_open_dev$vbi(&(0x7f0000000540)='/dev/vbi#\x00', 0x1, 0x2) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0285628, &(0x7f00000005c0)={0xa20000, 0x1000, 0x0, [], 0x0}) r1 = syz_open_dev$vcsa(&(0x7f0000000000)='/dev/vcsa#\x00', 0x551, 0x400900) ioctl$SNDRV_CTL_IOCTL_ELEM_WRITE(r1, 0xc4c85513, &(0x7f0000000040)={{0x4, 0x0, 0x8, 0xfffffffe, 'syz1\x00', 0x5}, 0x1, [0x100000000, 0x8001, 0xb916, 0xffff, 0x100000001, 0x1c07, 0x9, 0x5, 0x8000, 0x5, 0x81, 0xedce, 0x80000001, 0x6, 0x1, 0x6, 0xffff, 0x0, 0x5, 0xd, 0x0, 0x6, 0x8000, 0xd7, 0x0, 0xac, 0x4, 0x100, 0x1ff, 0x499b, 0x5, 0x4, 0x1000, 0x6, 0x5, 0x4, 0x5, 0xfc, 0x8, 0x800, 0x4, 0x5, 0x6, 0x200, 0x8, 0x2, 0x6, 0x8, 0xfff, 0x48, 0xffffffff0, 0x8, 0x10001, 0x6, 0xfff, 0xffffffffffff0724, 0x100000000, 0x1, 0x3, 0x5, 0x1, 0x2, 0x8, 0x68, 0x101, 0x3, 0x4, 0x0, 0xfffffffffffffff8, 0x6, 0x6, 0x0, 0xf7, 0x0, 0x7ff, 0x5f4, 0x1, 0x1, 0x5, 0x1, 0x80000001, 0x5, 0x25d6, 0x6, 0x80000001, 0xee, 0x9, 0x3, 0x3f, 0x1, 0x1ff, 0x4, 0x7, 0x6, 0x3, 0x4df, 0x80, 0x81, 0x1, 0x0, 0x1ff, 0x808, 0x775d, 0x0, 0x4e, 0xffff, 0x45, 0x4, 0x1, 0x1, 0x10000, 0x663069e5, 0x9, 0x7, 0x1, 0xfb3, 0x9, 0x3, 0x3, 0x8, 0xffffffff, 0xf0, 0x3f, 0xffffffff, 0x0, 0x3d56, 0x100000001, 0x6], {0x0, 0x1c9c380}}) 20:18:00 executing program 3: socketpair$unix(0x1, 0x2, 0x0, 0x0) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3422.154273] 9pnet: Insufficient options for proto=fd 20:18:00 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r1, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3422.230772] 9pnet: Insufficient options for proto=fd [ 3422.267874] 9pnet: Insufficient options for proto=fd [ 3425.572688] 9pnet: Insufficient options for proto=fd 20:18:07 executing program 5: r0 = syz_open_dev$vbi(&(0x7f0000000540)='/dev/vbi#\x00', 0x1, 0x2) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0285628, &(0x7f00000005c0)={0x9f0000, 0x2, 0x4, [], 0x0}) 20:18:07 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[]}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:07 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r1, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:07 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:18:07 executing program 3: socketpair$unix(0x1, 0x2, 0x0, 0x0) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3429.994212] 9pnet: Insufficient options for proto=fd 20:18:08 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) write$selinux_user(r1, &(0x7f0000000000)={'system_u:object_r:kmsg_device_t:s0', 0x20, 'sysadm_u\x00'}, 0x2c) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r2, 0x4b4d, &(0x7f0000000040)) socket$inet6(0xa, 0xc0006, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$TIOCMBIS(r4, 0x5416, &(0x7f00000000c0)=0x4) [ 3430.076556] syz-executor.0: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3430.100095] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 3430.105565] CPU: 0 PID: 9240 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3430.113378] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3430.122742] Call Trace: [ 3430.125337] dump_stack+0x142/0x197 [ 3430.128975] warn_alloc.cold+0x96/0x1af [ 3430.132956] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3430.137811] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3430.143099] __alloc_pages_slowpath+0x23c6/0x2930 [ 3430.148102] ? save_trace+0x290/0x290 [ 3430.151921] ? warn_alloc+0xf0/0xf0 [ 3430.155574] ? __might_sleep+0x93/0xb0 [ 3430.159468] __alloc_pages_nodemask+0x62c/0x7a0 [ 3430.164147] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3430.169177] ? ____cache_alloc_node+0x1be/0x1d0 [ 3430.173852] ? cache_grow_begin+0x335/0x400 [ 3430.178183] cache_grow_begin+0x80/0x400 [ 3430.182249] ? __cpuset_node_allowed+0xff/0x450 [ 3430.186921] fallback_alloc+0x1fd/0x2c0 [ 3430.190913] ____cache_alloc_node+0x1be/0x1d0 [ 3430.195418] kmem_cache_alloc_trace+0x213/0x790 [ 3430.200090] ? debug_smp_processor_id+0x1c/0x20 [ 3430.204765] ? perf_trace_lock+0x109/0x500 [ 3430.209029] kvm_dev_ioctl+0x163/0x1620 [ 3430.213014] ? kvm_put_kvm+0xaa0/0xaa0 [ 3430.216915] ? kvm_put_kvm+0xaa0/0xaa0 [ 3430.220902] do_vfs_ioctl+0x7ae/0x1060 [ 3430.224807] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3430.229573] ? lock_downgrade+0x740/0x740 [ 3430.233726] ? ioctl_preallocate+0x1c0/0x1c0 [ 3430.238139] ? __fget+0x237/0x370 [ 3430.241697] ? security_file_ioctl+0x89/0xb0 [ 3430.246115] SyS_ioctl+0x8f/0xc0 [ 3430.249481] ? do_vfs_ioctl+0x1060/0x1060 [ 3430.253637] do_syscall_64+0x1e8/0x640 [ 3430.257526] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3430.262382] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3430.267580] RIP: 0033:0x45a6f9 [ 3430.270754] RSP: 002b:00007f0635329c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3430.278465] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3430.285723] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3430.292982] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 3430.300240] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063532a6d4 [ 3430.307505] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3430.336089] 9pnet: Insufficient options for proto=fd [ 3430.350989] warn_alloc_show_mem: 1 callbacks suppressed [ 3430.350993] Mem-Info: [ 3430.362725] 9pnet: Insufficient options for proto=fd [ 3430.368070] active_anon:1343585 inactive_anon:567 isolated_anon:0 [ 3430.368070] active_file:1208 inactive_file:1096 isolated_file:22 [ 3430.368070] unevictable:0 dirty:34 writeback:21 unstable:0 [ 3430.368070] slab_reclaimable:16946 slab_unreclaimable:113906 [ 3430.368070] mapped:54099 shmem:7463 pagetables:16528 bounce:0 [ 3430.368070] free:30012 free_pcp:364 free_cma:0 [ 3430.423807] Node 0 active_anon:1996028kB inactive_anon:1336kB active_file:144kB inactive_file:676kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:209200kB dirty:4kB writeback:12kB shmem:11964kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3430.459596] Node 1 active_anon:3378304kB inactive_anon:932kB active_file:3344kB inactive_file:3400kB unevictable:0kB isolated(anon):0kB isolated(file):88kB mapped:5876kB dirty:144kB writeback:72kB shmem:17888kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3430.496127] Node 0 DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3430.531351] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3430.536511] Node 0 DMA32 free:38308kB min:36380kB low:45472kB high:54564kB active_anon:1991460kB inactive_anon:1336kB active_file:148kB inactive_file:672kB unevictable:0kB writepending:24kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28344kB bounce:0kB free_pcp:528kB local_pcp:252kB free_cma:0kB [ 3430.574501] lowmem_reserve[]: 0 0 0 0 0 [ 3430.578599] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3430.612061] lowmem_reserve[]: 0 0 0 0 0 [ 3430.616182] Node 1 Normal free:74024kB min:53508kB low:66884kB high:80260kB active_anon:3378204kB inactive_anon:932kB active_file:2704kB inactive_file:2920kB unevictable:0kB writepending:216kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11392kB pagetables:37520kB bounce:0kB free_pcp:1120kB local_pcp:424kB free_cma:0kB [ 3430.654405] lowmem_reserve[]: 0 0 0 0 0 [ 3430.663994] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3430.687574] Node 0 DMA32: 1446*4kB (UM) 2126*8kB (UM) 944*16kB (UME) 9*32kB (ME) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 38184kB [ 3430.708709] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3430.728024] Node 1 Normal: 1484*4kB (UME) 478*8kB (UME) 1908*16kB (UMEH) 1007*32kB (UMEH) 24*64kB (UMH) 6*128kB (UM) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 74816kB [ 3430.750636] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3430.767180] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3430.782010] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3430.791003] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3430.800341] 8971 total pagecache pages [ 3430.804377] 0 pages in swap cache [ 3430.807890] Swap cache stats: add 0, delete 0, find 0/0 [ 3430.813368] Free swap = 0kB [ 3430.817144] Total swap = 0kB [ 3430.821016] 1965979 pages RAM [ 3430.824119] 0 pages HighMem/MovableOnly [ 3430.828121] 335858 pages reserved [ 3430.831618] 0 pages cma reserved 20:18:11 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:18:11 executing program 5: r0 = syz_open_dev$vbi(&(0x7f0000000540)='/dev/vbi#\x00', 0x1, 0x2) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0285628, &(0x7f00000005c0)={0x980000, 0x0, 0x0, [], 0x0}) 20:18:11 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[]}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:11 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:12 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3433.739963] 9pnet: Insufficient options for proto=fd [ 3433.784507] 9pnet: Insufficient options for proto=fd 20:18:14 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:14 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[]}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:15 executing program 5: r0 = syz_open_dev$vbi(&(0x7f0000000540)='/dev/vbi#\x00', 0x1, 0x2) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0285628, &(0x7f00000005c0)={0x980000, 0x0, 0x0, [], 0x0}) socketpair$unix(0x1, 0xe735beae29be48bf, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000140)='/selinux/policy\x00', 0x0, 0x0) ioctl$SIOCAX25GETINFO(r2, 0x89ed, &(0x7f0000000180)) r3 = dup(r1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$KDGKBENT(r5, 0x4b46, &(0x7f0000000200)={0x3, 0x44, 0x1}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000000040)={0x0}) ioctl$SECCOMP_IOCTL_NOTIF_ID_VALID(r7, 0x80082102, &(0x7f0000000100)=r8) ioctl$VIDIOC_SUBDEV_G_SELECTION(r3, 0xc040563d, &(0x7f0000000000)={0x0, 0x0, 0x101, 0x4, {0xe174, 0x101, 0x10000, 0x8001}}) [ 3437.521771] syz-executor.3: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3437.547715] syz-executor.3 cpuset=syz3 mems_allowed=0-1 [ 3437.562414] CPU: 0 PID: 9279 Comm: syz-executor.3 Not tainted 4.14.158-syzkaller #0 [ 3437.570247] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3437.579608] Call Trace: [ 3437.582199] dump_stack+0x142/0x197 [ 3437.585837] warn_alloc.cold+0x96/0x1af [ 3437.589812] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3437.594650] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3437.599916] __alloc_pages_slowpath+0x23c6/0x2930 [ 3437.604761] ? save_trace+0x290/0x290 [ 3437.608554] ? warn_alloc+0xf0/0xf0 [ 3437.612176] ? __might_sleep+0x93/0xb0 [ 3437.616054] __alloc_pages_nodemask+0x62c/0x7a0 [ 3437.620721] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3437.625730] ? ____cache_alloc_node+0x1be/0x1d0 [ 3437.630391] ? cache_grow_begin+0x335/0x400 [ 3437.634707] cache_grow_begin+0x80/0x400 [ 3437.638760] ? __cpuset_node_allowed+0xff/0x450 [ 3437.643559] fallback_alloc+0x1fd/0x2c0 [ 3437.647534] ____cache_alloc_node+0x1be/0x1d0 [ 3437.652033] kmem_cache_alloc_trace+0x213/0x790 [ 3437.656700] ? debug_smp_processor_id+0x1c/0x20 [ 3437.661365] ? perf_trace_lock+0x109/0x500 [ 3437.665598] kvm_dev_ioctl+0x163/0x1620 [ 3437.669566] ? kvm_put_kvm+0xaa0/0xaa0 [ 3437.673452] ? kvm_put_kvm+0xaa0/0xaa0 [ 3437.677344] do_vfs_ioctl+0x7ae/0x1060 [ 3437.681226] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3437.686055] ? lock_downgrade+0x740/0x740 [ 3437.690448] ? ioctl_preallocate+0x1c0/0x1c0 [ 3437.694844] ? __fget+0x237/0x370 [ 3437.698298] ? security_file_ioctl+0x89/0xb0 [ 3437.702693] SyS_ioctl+0x8f/0xc0 [ 3437.706043] ? do_vfs_ioctl+0x1060/0x1060 [ 3437.710175] do_syscall_64+0x1e8/0x640 [ 3437.714135] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3437.718969] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3437.724160] RIP: 0033:0x45a6f9 [ 3437.727339] RSP: 002b:00007ff826292c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3437.735032] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3437.742307] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3437.749571] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3437.756838] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff8262936d4 [ 3437.764096] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3437.777735] 9pnet: Insufficient options for proto=fd [ 3437.795127] Mem-Info: [ 3437.809427] active_anon:1343557 inactive_anon:565 isolated_anon:12 [ 3437.809427] active_file:1125 inactive_file:1369 isolated_file:32 [ 3437.809427] unevictable:0 dirty:20 writeback:25 unstable:0 [ 3437.809427] slab_reclaimable:16971 slab_unreclaimable:114216 [ 3437.809427] mapped:54230 shmem:7461 pagetables:16504 bounce:0 [ 3437.809427] free:29930 free_pcp:103 free_cma:0 [ 3437.847636] Node 0 active_anon:1995892kB inactive_anon:1328kB active_file:432kB inactive_file:1352kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:209732kB dirty:12kB writeback:0kB shmem:11956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3437.878699] Node 1 active_anon:3378236kB inactive_anon:932kB active_file:2712kB inactive_file:2756kB unevictable:0kB isolated(anon):48kB isolated(file):128kB mapped:4788kB dirty:68kB writeback:0kB shmem:17888kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 81920kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3437.909675] Node 0 DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3437.938106] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3437.943444] Node 0 DMA32 free:37696kB min:36380kB low:45472kB high:54564kB active_anon:1991344kB inactive_anon:1328kB active_file:432kB inactive_file:1240kB unevictable:0kB writepending:12kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28324kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3437.976382] lowmem_reserve[]: 0 0 0 0 0 [ 3437.988638] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3438.025276] lowmem_reserve[]: 0 0 0 0 0 [ 3438.029426] Node 1 Normal free:76292kB min:53508kB low:66884kB high:80260kB active_anon:3378236kB inactive_anon:932kB active_file:2308kB inactive_file:1968kB unevictable:0kB writepending:68kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11360kB pagetables:37692kB bounce:0kB free_pcp:928kB local_pcp:244kB free_cma:0kB [ 3438.066116] lowmem_reserve[]: 0 0 0 0 0 [ 3438.072639] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3438.097364] Node 0 DMA32: 1442*4kB (UM) 2111*8kB (UME) 937*16kB (UME) 6*32kB (UE) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 37840kB [ 3438.120803] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3438.139115] Node 1 Normal: 1844*4kB (UME) 691*8kB (UME) 1992*16kB (UMEH) 1021*32kB (UMEH) 14*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 78344kB [ 3438.165703] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3438.183817] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3438.209087] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3438.227003] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3438.236359] 8331 total pagecache pages [ 3438.246545] 0 pages in swap cache [ 3438.251163] Swap cache stats: add 0, delete 0, find 0/0 [ 3438.257257] Free swap = 0kB [ 3438.265990] Total swap = 0kB [ 3438.269157] 1965979 pages RAM [ 3438.272381] 0 pages HighMem/MovableOnly [ 3438.276365] 335858 pages reserved [ 3438.279822] 0 pages cma reserved 20:18:18 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:18:19 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:19 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:19 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3441.054431] 9pnet: Insufficient options for proto=fd 20:18:19 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) dup(0xffffffffffffffff) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3441.130750] 9pnet: Insufficient options for proto=fd [ 3441.203734] 9pnet: Insufficient options for proto=fd [ 3441.427101] 9pnet: Insufficient options for proto=fd 20:18:25 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB, @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:18:25 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) dup(0xffffffffffffffff) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:25 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:25 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3447.510827] 9pnet: Insufficient options for proto=fd [ 3447.639681] 9pnet: Insufficient options for proto=fd [ 3447.788669] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3447.825777] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 3447.853275] CPU: 0 PID: 9319 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3447.861225] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3447.861231] Call Trace: [ 3447.861248] dump_stack+0x142/0x197 [ 3447.861265] warn_alloc.cold+0x96/0x1af [ 3447.861275] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3447.861295] ? __alloc_pages_direct_compact+0x290/0x380 [ 3447.861310] __alloc_pages_slowpath+0x23c6/0x2930 [ 3447.861330] ? save_trace+0x290/0x290 [ 3447.895876] ? warn_alloc+0xf0/0xf0 [ 3447.903298] ? __might_sleep+0x93/0xb0 [ 3447.907200] __alloc_pages_nodemask+0x62c/0x7a0 [ 3447.911879] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3447.916902] ? ____cache_alloc_node+0x1be/0x1d0 [ 3447.921577] ? cache_grow_begin+0x335/0x400 [ 3447.925912] cache_grow_begin+0x80/0x400 [ 3447.929975] ? __cpuset_node_allowed+0xff/0x450 [ 3447.934634] fallback_alloc+0x1fd/0x2c0 [ 3447.938602] ____cache_alloc_node+0x1be/0x1d0 [ 3447.943090] kmem_cache_alloc_trace+0x213/0x790 [ 3447.947749] ? retint_kernel+0x2d/0x2d [ 3447.951632] kvm_dev_ioctl+0x163/0x1620 [ 3447.955599] ? kvm_put_kvm+0xaa0/0xaa0 [ 3447.959482] ? kvm_put_kvm+0xaa0/0xaa0 [ 3447.963364] do_vfs_ioctl+0x7ae/0x1060 [ 3447.967239] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3447.971979] ? lock_downgrade+0x740/0x740 [ 3447.976124] ? ioctl_preallocate+0x1c0/0x1c0 [ 3447.980522] ? __fget+0x237/0x370 [ 3447.983973] ? security_file_ioctl+0x89/0xb0 [ 3447.988372] SyS_ioctl+0x8f/0xc0 [ 3447.991729] ? do_vfs_ioctl+0x1060/0x1060 [ 3447.995873] do_syscall_64+0x1e8/0x640 [ 3447.999746] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3448.004582] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3448.009776] RIP: 0033:0x45a6f9 [ 3448.012974] RSP: 002b:00007f2bca431c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3448.020686] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3448.027943] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3448.035208] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 3448.042468] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4326d4 [ 3448.049731] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3448.060708] syz-executor.0: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3448.085031] Mem-Info: [ 3448.087935] active_anon:1343551 inactive_anon:564 isolated_anon:0 [ 3448.087935] active_file:679 inactive_file:869 isolated_file:32 [ 3448.087935] unevictable:0 dirty:71 writeback:0 unstable:0 [ 3448.087935] slab_reclaimable:16980 slab_unreclaimable:113958 [ 3448.087935] mapped:53331 shmem:7461 pagetables:16511 bounce:0 [ 3448.087935] free:31062 free_pcp:122 free_cma:0 [ 3448.088024] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 3448.129540] CPU: 1 PID: 9324 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3448.130988] Node 0 active_anon:1995924kB inactive_anon:1328kB active_file:128kB inactive_file:536kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:209264kB dirty:32kB writeback:0kB shmem:11964kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3448.137340] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3448.137345] Call Trace: [ 3448.137363] dump_stack+0x142/0x197 [ 3448.137379] warn_alloc.cold+0x96/0x1af [ 3448.137390] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3448.137411] ? __alloc_pages_direct_compact+0x290/0x380 [ 3448.137425] __alloc_pages_slowpath+0x23c6/0x2930 [ 3448.137447] ? save_trace+0x290/0x290 [ 3448.137465] ? warn_alloc+0xf0/0xf0 [ 3448.175457] Node 1 active_anon:3378280kB inactive_anon:928kB active_file:2688kB inactive_file:3240kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:4260kB dirty:252kB writeback:0kB shmem:17880kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3448.177464] ? __might_sleep+0x93/0xb0 [ 3448.177480] __alloc_pages_nodemask+0x62c/0x7a0 [ 3448.184327] 9pnet: Insufficient options for proto=fd [ 3448.185074] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3448.185088] ? ____cache_alloc_node+0x1be/0x1d0 [ 3448.197277] Node 0 [ 3448.200142] ? cache_grow_begin+0x335/0x400 [ 3448.200160] cache_grow_begin+0x80/0x400 [ 3448.200172] ? __cpuset_node_allowed+0xff/0x450 [ 3448.200183] fallback_alloc+0x1fd/0x2c0 [ 3448.200198] ____cache_alloc_node+0x1be/0x1d0 [ 3448.200211] kmem_cache_alloc_trace+0x213/0x790 [ 3448.200231] kvm_dev_ioctl+0x163/0x1620 [ 3448.200250] ? kvm_put_kvm+0xaa0/0xaa0 [ 3448.200260] ? __inode_security_revalidate+0x6c/0x130 [ 3448.200275] ? kvm_put_kvm+0xaa0/0xaa0 [ 3448.200287] do_vfs_ioctl+0x7ae/0x1060 [ 3448.200297] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3448.200308] ? lock_downgrade+0x740/0x740 [ 3448.200320] ? ioctl_preallocate+0x1c0/0x1c0 [ 3448.200334] ? __fget+0x237/0x370 [ 3448.200354] ? security_file_ioctl+0x89/0xb0 [ 3448.200369] SyS_ioctl+0x8f/0xc0 [ 3448.200378] ? do_vfs_ioctl+0x1060/0x1060 [ 3448.200391] do_syscall_64+0x1e8/0x640 [ 3448.200401] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3448.200420] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3448.200428] RIP: 0033:0x45a6f9 [ 3448.200434] RSP: 002b:00007f063534ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3448.207754] DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3448.207868] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3448.265568] lowmem_reserve[]: [ 3448.265844] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3448.288133] 0 [ 3448.291633] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3448.291640] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063534b6d4 [ 3448.291646] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3448.445054] 2569 2569 2569 2569 [ 3448.448473] Node 0 DMA32 free:38840kB min:36380kB low:45472kB high:54564kB active_anon:1991376kB inactive_anon:1328kB active_file:128kB inactive_file:536kB unevictable:0kB writepending:32kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28420kB bounce:0kB free_pcp:184kB local_pcp:160kB free_cma:0kB [ 3448.478947] lowmem_reserve[]: 0 0 0 0 0 [ 3448.483276] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3448.508889] lowmem_reserve[]: 0 0 0 0 0 [ 3448.512959] Node 1 Normal free:73256kB min:53508kB low:66884kB high:80260kB active_anon:3378380kB inactive_anon:928kB active_file:2588kB inactive_file:3948kB unevictable:0kB writepending:252kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11200kB pagetables:37624kB bounce:0kB free_pcp:1020kB local_pcp:360kB free_cma:0kB [ 3448.543361] lowmem_reserve[]: 0 0 0 0 0 [ 3448.547392] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3448.564069] Node 0 DMA32: 1516*4kB (UM) 2133*8kB (UM) 944*16kB (UME) 19*32kB (UME) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 38840kB [ 3448.597274] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3448.609233] Node 1 Normal: 1546*4kB (UME) 561*8kB (UME) 1920*16kB (UMEH) 1006*32kB (UMEH) 11*64kB (UH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 74288kB [ 3448.625015] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3448.638044] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3448.647586] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3448.656656] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3448.665650] 9053 total pagecache pages [ 3448.669559] 0 pages in swap cache [ 3448.674696] Swap cache stats: add 0, delete 0, find 0/0 [ 3448.680217] Free swap = 0kB [ 3448.683230] Total swap = 0kB [ 3448.686246] 1965979 pages RAM [ 3448.689350] 0 pages HighMem/MovableOnly [ 3448.694162] 335858 pages reserved [ 3448.697631] 0 pages cma reserved 20:18:29 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB, @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:18:29 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) dup(0xffffffffffffffff) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:29 executing program 5: r0 = syz_open_dev$vbi(&(0x7f0000000540)='/dev/vbi#\x00', 0x1, 0x2) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x111000, 0x0) ioctl$DRM_IOCTL_SET_UNIQUE(r1, 0x40106410, &(0x7f0000000080)={0xb, &(0x7f0000000040)="1416ea853c6e7972bc9856"}) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0285628, &(0x7f00000005c0)={0x980000, 0x0, 0x0, [], 0x0}) 20:18:29 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:29 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:30 executing program 1: r0 = syz_open_dev$vcsn(&(0x7f0000000000)='/dev/vcs#\x00', 0x7f, 0x40) r1 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000100)='IPVS\x00') sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="010300e8ffcd0200000004"], 0x3}}, 0x0) sendmsg$IPVS_CMD_GET_DAEMON(r0, &(0x7f0000000240)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x40200000}, 0xc, &(0x7f0000000200)={&(0x7f00000000c0)={0x128, r1, 0x400, 0x70bd2b, 0x25dfdbfe, {}, [@IPVS_CMD_ATTR_DEST={0x44, 0x2, [@IPVS_DEST_ATTR_TUN_PORT={0x8, 0xe, 0x4e23}, @IPVS_DEST_ATTR_L_THRESH={0x8, 0x6, 0x6}, @IPVS_DEST_ATTR_PORT={0x8, 0x2, 0x4e24}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x8550fa0a8e6180aa}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x8, 0xb, 0x2}, @IPVS_DEST_ATTR_U_THRESH={0x8, 0x5, 0x100}, @IPVS_DEST_ATTR_PERSIST_CONNS={0x8, 0x9, 0x1}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8, 0x7, 0x6ee}]}, @IPVS_CMD_ATTR_SERVICE={0x58, 0x1, [@IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e23}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0x16}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@remote}, @IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x4}, @IPVS_SVC_ATTR_FLAGS={0xc, 0x7, {0x2, 0x44}}, @IPVS_SVC_ATTR_FWMARK={0x8}, @IPVS_SVC_ATTR_PROTOCOL={0x8, 0x2, 0x21}, @IPVS_SVC_ATTR_SCHED_NAME={0xc, 0x6, 'lblcr\x00'}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x100}, @IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x8}, @IPVS_CMD_ATTR_SERVICE={0x48, 0x1, [@IPVS_SVC_ATTR_FWMARK={0x8, 0x5, 0x2}, @IPVS_SVC_ATTR_SCHED_NAME={0x8, 0x6, 'nq\x00'}, @IPVS_SVC_ATTR_PORT={0x8, 0x4, 0x4e24}, @IPVS_SVC_ATTR_PE_NAME={0x8, 0xb, 'sip\x00'}, @IPVS_SVC_ATTR_ADDR={0x14, 0x3, @ipv6=@initdev={0xfe, 0x88, [], 0x1, 0x0}}, @IPVS_SVC_ATTR_TIMEOUT={0x8, 0x8, 0x8}, @IPVS_SVC_ATTR_AF={0x8, 0x1, 0x2}]}, @IPVS_CMD_ATTR_TIMEOUT_TCP={0x8, 0x4, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x1}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x7}, @IPVS_CMD_ATTR_TIMEOUT_UDP={0x8, 0x6, 0x4000400}]}, 0x128}, 0x1, 0x0, 0x0, 0x800}, 0x20000000) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r2, 0x4b4d, &(0x7f0000000040)) [ 3451.974041] syz-executor.3: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 3451.984840] syz-executor.3 cpuset=syz3 mems_allowed=0-1 [ 3451.991624] CPU: 0 PID: 9341 Comm: syz-executor.3 Not tainted 4.14.158-syzkaller #0 [ 3451.999441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3452.008803] Call Trace: [ 3452.011400] dump_stack+0x142/0x197 [ 3452.015042] warn_alloc.cold+0x96/0x1af [ 3452.019022] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3452.023869] ? wait_for_completion+0x420/0x420 [ 3452.023887] __alloc_pages_slowpath+0x23c6/0x2930 [ 3452.023915] ? warn_alloc+0xf0/0xf0 [ 3452.023939] ? __might_sleep+0x93/0xb0 [ 3452.023951] __alloc_pages_nodemask+0x62c/0x7a0 [ 3452.045522] ? rcu_read_lock_sched_held+0x110/0x130 [ 3452.048831] 9pnet: Insufficient options for proto=fd [ 3452.050543] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3452.050572] alloc_pages_current+0xec/0x1e0 [ 3452.050588] kvm_mmu_create+0xdf/0x1e0 [ 3452.050601] kvm_arch_vcpu_init+0x29c/0x8e0 [ 3452.050615] kvm_vcpu_init+0x272/0x360 [ 3452.050628] vmx_create_vcpu+0xfc/0x2aa0 [ 3452.050638] ? mutex_trylock+0x1c0/0x1c0 [ 3452.050656] ? handle_rdmsr+0x6e0/0x6e0 [ 3452.060766] ? wait_for_completion+0x420/0x420 [ 3452.060783] kvm_arch_vcpu_create+0x8c/0xc0 [ 3452.060796] kvm_vm_ioctl+0x501/0x1600 [ 3452.060808] ? __lock_acquire+0x5f7/0x4620 [ 3452.060823] ? kvm_vcpu_release+0xa0/0xa0 [ 3452.069001] ? debug_smp_processor_id+0x1c/0x20 [ 3452.069012] ? perf_trace_lock+0x109/0x500 [ 3452.069023] ? check_preemption_disabled+0x3c/0x250 [ 3452.069038] ? debug_smp_processor_id+0x1c/0x20 [ 3452.069046] ? perf_trace_lock+0x109/0x500 [ 3452.069058] ? save_trace+0x290/0x290 [ 3452.137105] ? SOFTIRQ_verbose+0x10/0x10 [ 3452.141213] ? __fget+0x210/0x370 [ 3452.144681] ? find_held_lock+0x35/0x130 [ 3452.148757] ? __fget+0x210/0x370 [ 3452.152220] ? kvm_vcpu_release+0xa0/0xa0 [ 3452.156375] do_vfs_ioctl+0x7ae/0x1060 [ 3452.160269] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3452.165033] ? lock_downgrade+0x740/0x740 [ 3452.169186] ? ioctl_preallocate+0x1c0/0x1c0 [ 3452.173602] ? __fget+0x237/0x370 [ 3452.174090] syz-executor.0: [ 3452.177062] ? security_file_ioctl+0x89/0xb0 [ 3452.177079] SyS_ioctl+0x8f/0xc0 [ 3452.177091] ? do_vfs_ioctl+0x1060/0x1060 [ 3452.177106] do_syscall_64+0x1e8/0x640 [ 3452.177116] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3452.177133] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3452.205928] RIP: 0033:0x45a6f9 [ 3452.209102] RSP: 002b:00007ff826292c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3452.216797] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3452.224052] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000007 [ 3452.231307] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3452.238563] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff8262936d4 [ 3452.245819] R13: 00000000004c3abc R14: 00000000004d90d8 R15: 00000000ffffffff [ 3452.260967] 9pnet: Insufficient options for proto=fd [ 3452.264056] 9pnet: Insufficient options for proto=fd [ 3452.299063] page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3452.371158] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 3452.371877] warn_alloc_show_mem: 1 callbacks suppressed [ 3452.371882] Mem-Info: [ 3452.398426] active_anon:1343587 inactive_anon:564 isolated_anon:12 [ 3452.398426] active_file:1226 inactive_file:1167 isolated_file:47 [ 3452.398426] unevictable:0 dirty:71 writeback:0 unstable:0 [ 3452.398426] slab_reclaimable:16955 slab_unreclaimable:114184 [ 3452.398426] mapped:54329 shmem:7461 pagetables:16537 bounce:0 [ 3452.398426] free:29801 free_pcp:83 free_cma:0 [ 3452.398659] CPU: 1 PID: 9352 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3452.440108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3452.449462] Call Trace: [ 3452.452065] dump_stack+0x142/0x197 [ 3452.455701] warn_alloc.cold+0x96/0x1af [ 3452.459683] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3452.463929] Node 0 active_anon:1995932kB inactive_anon:1328kB active_file:676kB inactive_file:644kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:210184kB dirty:88kB writeback:0kB shmem:11956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3452.464538] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3452.464553] __alloc_pages_slowpath+0x23c6/0x2930 [ 3452.493220] Node 1 active_anon:3378416kB inactive_anon:928kB active_file:4428kB inactive_file:4024kB unevictable:0kB isolated(anon):48kB isolated(file):60kB mapped:7032kB dirty:196kB writeback:0kB shmem:17888kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3452.498043] ? save_trace+0x290/0x290 [ 3452.498063] ? warn_alloc+0xf0/0xf0 [ 3452.503189] Node 0 [ 3452.530999] ? __might_sleep+0x93/0xb0 [ 3452.531021] __alloc_pages_nodemask+0x62c/0x7a0 [ 3452.531035] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3452.531047] ? ____cache_alloc_node+0x1be/0x1d0 [ 3452.531056] ? cache_grow_begin+0x335/0x400 [ 3452.531069] cache_grow_begin+0x80/0x400 [ 3452.531080] ? __cpuset_node_allowed+0xff/0x450 [ 3452.531093] fallback_alloc+0x1fd/0x2c0 [ 3452.531110] ____cache_alloc_node+0x1be/0x1d0 [ 3452.531123] kmem_cache_alloc_trace+0x213/0x790 [ 3452.531133] ? debug_smp_processor_id+0x1c/0x20 [ 3452.531145] ? perf_trace_lock+0x109/0x500 [ 3452.531166] kvm_dev_ioctl+0x163/0x1620 [ 3452.531185] ? kvm_put_kvm+0xaa0/0xaa0 [ 3452.531202] ? kvm_put_kvm+0xaa0/0xaa0 [ 3452.531216] do_vfs_ioctl+0x7ae/0x1060 [ 3452.531229] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3452.531238] ? lock_downgrade+0x740/0x740 [ 3452.531251] ? ioctl_preallocate+0x1c0/0x1c0 [ 3452.531268] ? __fget+0x237/0x370 [ 3452.537343] DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3452.538691] ? security_file_ioctl+0x89/0xb0 [ 3452.538707] SyS_ioctl+0x8f/0xc0 [ 3452.540974] lowmem_reserve[]: [ 3452.544791] ? do_vfs_ioctl+0x1060/0x1060 [ 3452.544807] do_syscall_64+0x1e8/0x640 [ 3452.544818] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3452.553113] 0 [ 3452.554471] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3452.554481] RIP: 0033:0x45a6f9 [ 3452.559155] 2569 [ 3452.563430] RSP: 002b:00007f0635308c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3452.563441] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3452.563447] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 3452.563453] RBP: 000000000075c070 R08: 0000000000000000 R09: 0000000000000000 [ 3452.563458] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f06353096d4 [ 3452.563464] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3452.659944] syz-executor.2: [ 3452.691908] 2569 2569 2569 [ 3452.744966] Node 0 DMA32 free:37648kB min:36380kB low:45472kB high:54564kB active_anon:1991384kB inactive_anon:1328kB active_file:816kB inactive_file:796kB unevictable:0kB writepending:40kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28668kB bounce:0kB free_pcp:128kB local_pcp:0kB free_cma:0kB [ 3452.774836] lowmem_reserve[]: 0 0 0 0 0 [ 3452.796009] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3452.796553] page allocation failure: order:5 [ 3452.822219] lowmem_reserve[]: 0 0 0 0 0 [ 3452.870413] Node 1 Normal free:74600kB min:53508kB low:66884kB high:80260kB active_anon:3378516kB inactive_anon:928kB active_file:2152kB inactive_file:2604kB unevictable:0kB writepending:116kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11360kB pagetables:37480kB bounce:0kB free_pcp:1244kB local_pcp:680kB free_cma:0kB [ 3452.884928] , mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask= [ 3452.930071] lowmem_reserve[]: [ 3452.933053] (null) [ 3452.936095] 0 0 0 0 0 [ 3452.936120] Node 0 DMA: 12*4kB (UMEH) [ 3452.947313] syz-executor.2 cpuset=syz2 mems_allowed=0-1 [ 3452.960094] 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3452.979790] CPU: 1 PID: 9342 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3452.987605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3452.996960] Call Trace: [ 3452.999541] dump_stack+0x142/0x197 [ 3453.003160] warn_alloc.cold+0x96/0x1af [ 3453.007121] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3453.011954] ? __alloc_pages_direct_compact+0x290/0x380 [ 3453.017305] __alloc_pages_slowpath+0x23c6/0x2930 [ 3453.022137] ? save_trace+0x290/0x290 [ 3453.025925] ? warn_alloc+0xf0/0xf0 [ 3453.029544] ? __might_sleep+0x93/0xb0 [ 3453.033426] __alloc_pages_nodemask+0x62c/0x7a0 [ 3453.038086] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3453.043087] ? ____cache_alloc_node+0x1be/0x1d0 [ 3453.047752] ? cache_grow_begin+0x335/0x400 [ 3453.052066] cache_grow_begin+0x80/0x400 [ 3453.056115] ? __cpuset_node_allowed+0xff/0x450 [ 3453.060941] fallback_alloc+0x1fd/0x2c0 [ 3453.064903] ____cache_alloc_node+0x1be/0x1d0 [ 3453.069385] kmem_cache_alloc_trace+0x213/0x790 [ 3453.074038] ? debug_smp_processor_id+0x1c/0x20 [ 3453.078695] ? perf_trace_lock+0x109/0x500 [ 3453.082920] kvm_dev_ioctl+0x163/0x1620 [ 3453.086883] ? kvm_put_kvm+0xaa0/0xaa0 [ 3453.090757] ? kvm_put_kvm+0xaa0/0xaa0 [ 3453.094626] do_vfs_ioctl+0x7ae/0x1060 [ 3453.098498] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3453.103235] ? lock_downgrade+0x740/0x740 [ 3453.107366] ? ioctl_preallocate+0x1c0/0x1c0 [ 3453.111764] ? __fget+0x237/0x370 [ 3453.115206] ? security_file_ioctl+0x89/0xb0 [ 3453.119600] SyS_ioctl+0x8f/0xc0 [ 3453.122947] ? do_vfs_ioctl+0x1060/0x1060 [ 3453.127080] do_syscall_64+0x1e8/0x640 [ 3453.130948] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3453.135782] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3453.140957] RIP: 0033:0x45a6f9 [ 3453.144128] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3453.151907] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3453.159158] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 3453.166413] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3453.173674] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3453.180933] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3453.189105] Node 0 DMA32: 1437*4kB (UM) 2174*8kB (UM) 940*16kB (UME) 14*32kB (UME) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 38628kB [ 3453.209707] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3453.220586] Node 1 Normal: 1468*4kB (UME) 677*8kB (UME) 1985*16kB (UMEH) 1019*32kB (UMEH) 11*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 76360kB [ 3453.235747] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3453.245718] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3453.257973] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3453.269581] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3453.286874] 8514 total pagecache pages [ 3453.290851] 0 pages in swap cache [ 3453.294321] Swap cache stats: add 0, delete 0, find 0/0 [ 3453.307363] Free swap = 0kB [ 3453.310478] Total swap = 0kB [ 3453.313503] 1965979 pages RAM [ 3453.316765] 0 pages HighMem/MovableOnly [ 3453.327371] 335858 pages reserved [ 3453.330914] 0 pages cma reserved 20:18:34 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB, @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:18:34 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:34 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:34 executing program 5: r0 = syz_open_dev$vbi(&(0x7f0000000540)='/dev/vbi#\x00', 0x1, 0x2) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0285628, &(0x7f00000005c0)={0x980000, 0x0, 0x0, [], 0x0}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$TIOCGDEV(r2, 0x80045432, &(0x7f0000000000)) [ 3456.474935] 9pnet: Insufficient options for proto=fd [ 3456.612413] 9pnet: Insufficient options for proto=fd [ 3456.683207] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3456.685079] syz-executor.0: [ 3456.695795] syz-executor.4 cpuset= [ 3456.700295] 9pnet: Insufficient options for proto=fd [ 3456.711885] syz4 mems_allowed=0-1 [ 3456.717343] CPU: 0 PID: 9369 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3456.725051] page allocation failure: order:5 [ 3456.725270] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3456.725275] Call Trace: [ 3456.725296] dump_stack+0x142/0x197 [ 3456.745254] warn_alloc.cold+0x96/0x1af [ 3456.745260] , mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3456.749226] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3456.749251] ? __alloc_pages_direct_compact+0x290/0x380 [ 3456.749265] __alloc_pages_slowpath+0x23c6/0x2930 [ 3456.770781] ? save_trace+0x290/0x290 [ 3456.774599] ? warn_alloc+0xf0/0xf0 [ 3456.778234] ? __might_sleep+0x93/0xb0 [ 3456.782111] __alloc_pages_nodemask+0x62c/0x7a0 [ 3456.786772] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3456.791780] ? ____cache_alloc_node+0x1be/0x1d0 [ 3456.796439] ? cache_grow_begin+0x335/0x400 [ 3456.800781] cache_grow_begin+0x80/0x400 [ 3456.804838] ? __cpuset_node_allowed+0xff/0x450 [ 3456.809498] fallback_alloc+0x1fd/0x2c0 [ 3456.813469] ____cache_alloc_node+0x1be/0x1d0 [ 3456.817961] kmem_cache_alloc_trace+0x213/0x790 [ 3456.822619] ? debug_smp_processor_id+0x1c/0x20 [ 3456.827315] ? perf_trace_lock+0x109/0x500 [ 3456.831545] kvm_dev_ioctl+0x163/0x1620 [ 3456.835513] ? kvm_put_kvm+0xaa0/0xaa0 [ 3456.839392] ? kvm_put_kvm+0xaa0/0xaa0 [ 3456.843281] do_vfs_ioctl+0x7ae/0x1060 [ 3456.847157] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3456.851902] ? lock_downgrade+0x740/0x740 [ 3456.856035] ? ioctl_preallocate+0x1c0/0x1c0 [ 3456.860432] ? __fget+0x237/0x370 [ 3456.863878] ? security_file_ioctl+0x89/0xb0 [ 3456.868275] SyS_ioctl+0x8f/0xc0 [ 3456.871625] ? do_vfs_ioctl+0x1060/0x1060 [ 3456.875773] do_syscall_64+0x1e8/0x640 [ 3456.879644] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3456.884479] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3456.889651] RIP: 0033:0x45a6f9 [ 3456.892827] RSP: 002b:00007f2bca431c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3456.900532] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3456.907786] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3456.915040] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 3456.922306] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4326d4 [ 3456.929568] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3456.950336] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 3456.955764] CPU: 1 PID: 9370 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3456.963566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3456.970826] warn_alloc_show_mem: 2 callbacks suppressed [ 3456.970830] Mem-Info: [ 3456.972919] Call Trace: [ 3456.972937] dump_stack+0x142/0x197 [ 3456.972956] warn_alloc.cold+0x96/0x1af [ 3456.972968] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3456.972989] ? __alloc_pages_direct_compact+0x290/0x380 [ 3456.980751] active_anon:1343553 inactive_anon:566 isolated_anon:24 [ 3456.980751] active_file:728 inactive_file:1421 isolated_file:42 [ 3456.980751] unevictable:0 dirty:40 writeback:0 unstable:0 [ 3456.980751] slab_reclaimable:16946 slab_unreclaimable:114175 [ 3456.980751] mapped:53891 shmem:7461 pagetables:16482 bounce:0 [ 3456.980751] free:30192 free_pcp:184 free_cma:0 [ 3456.983314] __alloc_pages_slowpath+0x23c6/0x2930 [ 3456.983340] ? save_trace+0x290/0x290 [ 3456.983358] ? warn_alloc+0xf0/0xf0 [ 3456.987124] Node 0 active_anon:1995932kB inactive_anon:1328kB active_file:108kB inactive_file:1600kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:209848kB dirty:8kB writeback:0kB shmem:11956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3456.990967] ? __might_sleep+0x93/0xb0 [ 3456.990983] __alloc_pages_nodemask+0x62c/0x7a0 [ 3456.990998] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3456.991009] ? ____cache_alloc_node+0x1be/0x1d0 [ 3456.991020] ? cache_grow_begin+0x335/0x400 [ 3456.991035] cache_grow_begin+0x80/0x400 [ 3456.991047] ? __cpuset_node_allowed+0xff/0x450 [ 3456.996673] Node 1 active_anon:3378280kB inactive_anon:936kB active_file:2804kB inactive_file:4084kB unevictable:0kB isolated(anon):96kB isolated(file):168kB mapped:5716kB dirty:152kB writeback:0kB shmem:17888kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3457.001245] fallback_alloc+0x1fd/0x2c0 [ 3457.001263] ____cache_alloc_node+0x1be/0x1d0 [ 3457.001279] kmem_cache_alloc_trace+0x213/0x790 [ 3457.001289] ? debug_smp_processor_id+0x1c/0x20 [ 3457.001300] ? perf_trace_lock+0x109/0x500 [ 3457.001326] kvm_dev_ioctl+0x163/0x1620 [ 3457.036640] Node 0 [ 3457.039996] ? kvm_put_kvm+0xaa0/0xaa0 [ 3457.040017] ? kvm_put_kvm+0xaa0/0xaa0 [ 3457.040029] do_vfs_ioctl+0x7ae/0x1060 [ 3457.040042] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3457.040053] ? lock_downgrade+0x740/0x740 [ 3457.040065] ? ioctl_preallocate+0x1c0/0x1c0 [ 3457.040078] ? __fget+0x237/0x370 [ 3457.040097] ? security_file_ioctl+0x89/0xb0 [ 3457.040111] SyS_ioctl+0x8f/0xc0 [ 3457.040121] ? do_vfs_ioctl+0x1060/0x1060 [ 3457.040135] do_syscall_64+0x1e8/0x640 [ 3457.040145] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3457.040164] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3457.040173] RIP: 0033:0x45a6f9 [ 3457.040179] RSP: 002b:00007f063534ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3457.040191] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3457.040198] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3457.040203] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3457.040208] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063534b6d4 [ 3457.040213] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3457.082087] DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3457.116857] lowmem_reserve[]: [ 3457.164298] 0 [ 3457.171761] 2569 2569 2569 2569 [ 3457.321016] Node 0 DMA32 free:37440kB min:36380kB low:45472kB high:54564kB active_anon:1991340kB inactive_anon:1328kB active_file:160kB inactive_file:1684kB unevictable:0kB writepending:56kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28488kB bounce:0kB free_pcp:556kB local_pcp:172kB free_cma:0kB [ 3457.352082] lowmem_reserve[]: 0 0 0 0 0 [ 3457.356872] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3457.382274] lowmem_reserve[]: 0 0 0 0 0 [ 3457.386546] Node 1 Normal free:74712kB min:53508kB low:66884kB high:80260kB active_anon:3378284kB inactive_anon:928kB active_file:3144kB inactive_file:2952kB unevictable:0kB writepending:208kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11232kB pagetables:37404kB bounce:0kB free_pcp:1084kB local_pcp:444kB free_cma:0kB [ 3457.417235] lowmem_reserve[]: 0 0 0 0 0 [ 3457.421791] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3457.442667] Node 0 DMA32: 1328*4kB (UM) 2102*8kB (UE) 933*16kB (UE) 12*32kB (UE) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 37440kB [ 3457.456583] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3457.467769] Node 1 Normal: 1271*4kB (UME) 631*8kB (UME) 1941*16kB (UMEH) 1027*32kB (UMEH) 10*64kB (UMH) 2*128kB (UM) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 74948kB [ 3457.483272] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3457.483281] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3457.483289] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3457.483296] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3457.483299] 9472 total pagecache pages [ 3457.483311] 0 pages in swap cache [ 3457.483350] Swap cache stats: add 0, delete 0, find 0/0 [ 3457.530440] Free swap = 0kB [ 3457.534352] Total swap = 0kB [ 3457.537373] 1965979 pages RAM [ 3457.552435] 0 pages HighMem/MovableOnly [ 3457.556611] 335858 pages reserved [ 3457.568243] 0 pages cma reserved 20:18:38 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:38 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:38 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfd', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:18:38 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3460.600659] syz-executor.3: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3460.643096] syz-executor.3 cpuset=syz3 mems_allowed=0-1 [ 3460.655701] CPU: 0 PID: 9386 Comm: syz-executor.3 Not tainted 4.14.158-syzkaller #0 [ 3460.663529] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3460.672891] Call Trace: [ 3460.675491] dump_stack+0x142/0x197 [ 3460.679136] warn_alloc.cold+0x96/0x1af [ 3460.683121] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3460.688093] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3460.693381] __alloc_pages_slowpath+0x23c6/0x2930 [ 3460.698242] ? save_trace+0x290/0x290 [ 3460.702057] ? warn_alloc+0xf0/0xf0 [ 3460.705706] ? __might_sleep+0x93/0xb0 [ 3460.709613] __alloc_pages_nodemask+0x62c/0x7a0 [ 3460.714288] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3460.719313] ? ____cache_alloc_node+0x1be/0x1d0 [ 3460.723987] ? cache_grow_begin+0x335/0x400 [ 3460.728320] cache_grow_begin+0x80/0x400 [ 3460.732390] ? __cpuset_node_allowed+0xff/0x450 [ 3460.737066] fallback_alloc+0x1fd/0x2c0 [ 3460.741051] ____cache_alloc_node+0x1be/0x1d0 [ 3460.745558] kmem_cache_alloc_trace+0x213/0x790 [ 3460.750231] ? debug_smp_processor_id+0x1c/0x20 [ 3460.754918] ? perf_trace_lock+0x109/0x500 [ 3460.759170] kvm_dev_ioctl+0x163/0x1620 [ 3460.763162] ? kvm_put_kvm+0xaa0/0xaa0 [ 3460.767072] ? kvm_put_kvm+0xaa0/0xaa0 [ 3460.770977] do_vfs_ioctl+0x7ae/0x1060 [ 3460.774881] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3460.779650] ? lock_downgrade+0x740/0x740 [ 3460.783809] ? ioctl_preallocate+0x1c0/0x1c0 [ 3460.788231] ? __fget+0x237/0x370 [ 3460.791705] ? security_file_ioctl+0x89/0xb0 [ 3460.796246] SyS_ioctl+0x8f/0xc0 [ 3460.799630] ? do_vfs_ioctl+0x1060/0x1060 [ 3460.803795] do_syscall_64+0x1e8/0x640 [ 3460.807693] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3460.812561] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3460.817755] RIP: 0033:0x45a6f9 [ 3460.820947] RSP: 002b:00007ff826292c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3460.828690] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3460.835969] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3460.843357] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3460.850636] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff8262936d4 [ 3460.857897] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3460.870437] 9pnet: Insufficient options for proto=fd [ 3460.874800] 9pnet: Insufficient options for proto=fd [ 3460.875890] 9pnet: Insufficient options for proto=fd [ 3460.887084] syz-executor.0: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3460.895826] warn_alloc_show_mem: 1 callbacks suppressed [ 3460.895830] Mem-Info: [ 3460.913674] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 3460.921497] active_anon:1343578 inactive_anon:566 isolated_anon:0 [ 3460.921497] active_file:1303 inactive_file:1290 isolated_file:32 [ 3460.921497] unevictable:0 dirty:4 writeback:0 unstable:0 [ 3460.921497] slab_reclaimable:16936 slab_unreclaimable:114158 [ 3460.921497] mapped:54632 shmem:7461 pagetables:16482 bounce:0 [ 3460.921497] free:29384 free_pcp:423 free_cma:0 [ 3460.945078] CPU: 1 PID: 9384 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3460.963095] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3460.963100] Call Trace: [ 3460.963123] dump_stack+0x142/0x197 [ 3460.963144] warn_alloc.cold+0x96/0x1af [ 3460.978719] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3460.987524] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3460.992800] __alloc_pages_slowpath+0x23c6/0x2930 [ 3460.997642] ? save_trace+0x290/0x290 [ 3461.001432] ? warn_alloc+0xf0/0xf0 [ 3461.005056] ? __might_sleep+0x93/0xb0 [ 3461.008968] __alloc_pages_nodemask+0x62c/0x7a0 [ 3461.013631] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3461.018650] ? ____cache_alloc_node+0x1be/0x1d0 [ 3461.023305] ? cache_grow_begin+0x335/0x400 [ 3461.027622] cache_grow_begin+0x80/0x400 [ 3461.031671] ? __cpuset_node_allowed+0xff/0x450 [ 3461.036327] fallback_alloc+0x1fd/0x2c0 [ 3461.040293] ____cache_alloc_node+0x1be/0x1d0 [ 3461.044788] kmem_cache_alloc_trace+0x213/0x790 [ 3461.049442] ? debug_smp_processor_id+0x1c/0x20 [ 3461.054097] ? perf_trace_lock+0x109/0x500 [ 3461.058323] kvm_dev_ioctl+0x163/0x1620 [ 3461.062288] ? kvm_put_kvm+0xaa0/0xaa0 [ 3461.066165] ? kvm_put_kvm+0xaa0/0xaa0 [ 3461.070038] do_vfs_ioctl+0x7ae/0x1060 [ 3461.073913] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3461.078654] ? lock_downgrade+0x740/0x740 [ 3461.083220] ? ioctl_preallocate+0x1c0/0x1c0 [ 3461.087618] ? __fget+0x237/0x370 [ 3461.091061] ? security_file_ioctl+0x89/0xb0 [ 3461.095462] SyS_ioctl+0x8f/0xc0 [ 3461.098814] ? do_vfs_ioctl+0x1060/0x1060 [ 3461.102950] do_syscall_64+0x1e8/0x640 [ 3461.106826] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3461.111660] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3461.116835] RIP: 0033:0x45a6f9 [ 3461.120011] RSP: 002b:00007f063534ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3461.127712] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3461.134970] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3461.142227] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3461.149480] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063534b6d4 [ 3461.156735] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3461.164514] Node 0 active_anon:1996020kB inactive_anon:1328kB active_file:172kB inactive_file:104kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:209180kB dirty:4kB writeback:0kB shmem:11956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3461.229010] Node 1 active_anon:3378276kB inactive_anon:936kB active_file:3768kB inactive_file:4652kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:6864kB dirty:36kB writeback:0kB shmem:17896kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3461.265615] Node 0 DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3461.294667] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3461.300706] Node 0 DMA32 free:38900kB min:36380kB low:45472kB high:54564kB active_anon:1991448kB inactive_anon:1328kB active_file:140kB inactive_file:160kB unevictable:0kB writepending:4kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28332kB bounce:0kB free_pcp:796kB local_pcp:164kB free_cma:0kB [ 3461.364404] lowmem_reserve[]: 0 0 0 0 0 [ 3461.368570] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3461.396157] lowmem_reserve[]: 0 0 0 0 0 [ 3461.400512] Node 1 Normal free:73436kB min:53508kB low:66884kB high:80260kB active_anon:3378276kB inactive_anon:936kB active_file:3440kB inactive_file:3816kB unevictable:0kB writepending:36kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11360kB pagetables:37608kB bounce:0kB free_pcp:1156kB local_pcp:444kB free_cma:0kB [ 3461.450104] lowmem_reserve[]: 0 0 0 0 0 [ 3461.459842] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3461.497533] Node 0 DMA32: 1541*4kB (UME) 2144*8kB (UME) 946*16kB (UME) 14*32kB (UME) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 38900kB [ 3461.513603] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3461.525230] Node 1 Normal: 1165*4kB (UME) 702*8kB (UME) 1983*16kB (UMEH) 1023*32kB (UMEH) 4*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 74996kB [ 3461.541338] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3461.551767] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3461.560902] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3461.570289] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3461.579391] 8901 total pagecache pages [ 3461.583613] 0 pages in swap cache [ 3461.587898] Swap cache stats: add 0, delete 0, find 0/0 [ 3461.594330] Free swap = 0kB [ 3461.597445] Total swap = 0kB [ 3461.610120] 1965979 pages RAM [ 3461.614427] 0 pages HighMem/MovableOnly [ 3461.622961] 335858 pages reserved [ 3461.629733] 0 pages cma reserved 20:18:42 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:42 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:42 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfd', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:18:42 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3464.903339] 9pnet: Insufficient options for proto=fd [ 3464.924650] syz-executor.2: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3464.949379] syz-executor.2 cpuset=syz2 mems_allowed=0-1 [ 3464.959751] syz-executor.0: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3464.961932] CPU: 0 PID: 9401 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3464.978309] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3464.987666] Call Trace: [ 3464.990060] syz-executor.0 cpuset= [ 3464.990254] dump_stack+0x142/0x197 [ 3464.990256] syz0 mems_allowed=0-1 [ 3464.993792] warn_alloc.cold+0x96/0x1af [ 3465.004849] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3465.009702] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3465.011102] 9pnet: Insufficient options for proto=fd [ 3465.014979] __alloc_pages_slowpath+0x23c6/0x2930 [ 3465.024925] ? save_trace+0x290/0x290 [ 3465.028738] ? warn_alloc+0xf0/0xf0 [ 3465.032370] ? __might_sleep+0x93/0xb0 [ 3465.036255] __alloc_pages_nodemask+0x62c/0x7a0 [ 3465.040935] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3465.045972] ? ____cache_alloc_node+0x1be/0x1d0 [ 3465.050638] ? cache_grow_begin+0x335/0x400 [ 3465.054954] cache_grow_begin+0x80/0x400 [ 3465.059009] ? __cpuset_node_allowed+0xff/0x450 [ 3465.063675] fallback_alloc+0x1fd/0x2c0 [ 3465.067645] ____cache_alloc_node+0x1be/0x1d0 [ 3465.072136] kmem_cache_alloc_trace+0x213/0x790 [ 3465.076796] ? debug_smp_processor_id+0x1c/0x20 [ 3465.081551] ? perf_trace_lock+0x109/0x500 [ 3465.085801] kvm_dev_ioctl+0x163/0x1620 [ 3465.089783] ? kvm_put_kvm+0xaa0/0xaa0 [ 3465.093666] ? kvm_put_kvm+0xaa0/0xaa0 [ 3465.097552] do_vfs_ioctl+0x7ae/0x1060 [ 3465.101444] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3465.106204] ? lock_downgrade+0x740/0x740 [ 3465.110355] ? ioctl_preallocate+0x1c0/0x1c0 [ 3465.114784] ? __fget+0x237/0x370 [ 3465.118271] ? security_file_ioctl+0x89/0xb0 [ 3465.122688] SyS_ioctl+0x8f/0xc0 [ 3465.126059] ? do_vfs_ioctl+0x1060/0x1060 [ 3465.130205] do_syscall_64+0x1e8/0x640 [ 3465.134092] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3465.138944] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3465.144133] RIP: 0033:0x45a6f9 [ 3465.147314] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3465.155018] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3465.162284] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 3465.169550] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3465.176809] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3465.184073] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3465.191359] CPU: 1 PID: 9405 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3465.199163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3465.208608] Call Trace: [ 3465.211202] dump_stack+0x142/0x197 [ 3465.214839] warn_alloc.cold+0x96/0x1af [ 3465.218829] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3465.223695] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3465.228987] __alloc_pages_slowpath+0x23c6/0x2930 [ 3465.233840] ? save_trace+0x290/0x290 [ 3465.237634] ? warn_alloc+0xf0/0xf0 [ 3465.241257] ? __might_sleep+0x93/0xb0 [ 3465.245150] __alloc_pages_nodemask+0x62c/0x7a0 [ 3465.249813] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3465.254824] ? ____cache_alloc_node+0x1be/0x1d0 [ 3465.259497] ? cache_grow_begin+0x335/0x400 [ 3465.264789] cache_grow_begin+0x80/0x400 [ 3465.268851] ? __cpuset_node_allowed+0xff/0x450 [ 3465.273530] fallback_alloc+0x1fd/0x2c0 [ 3465.277497] ____cache_alloc_node+0x1be/0x1d0 [ 3465.281980] kmem_cache_alloc_trace+0x213/0x790 [ 3465.286636] ? debug_smp_processor_id+0x1c/0x20 [ 3465.291298] ? perf_trace_lock+0x109/0x500 [ 3465.295526] kvm_dev_ioctl+0x163/0x1620 [ 3465.299505] ? kvm_put_kvm+0xaa0/0xaa0 [ 3465.303398] ? kvm_put_kvm+0xaa0/0xaa0 [ 3465.307414] do_vfs_ioctl+0x7ae/0x1060 [ 3465.311300] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3465.316042] ? lock_downgrade+0x740/0x740 [ 3465.320176] ? ioctl_preallocate+0x1c0/0x1c0 [ 3465.324571] ? __fget+0x237/0x370 [ 3465.328013] ? security_file_ioctl+0x89/0xb0 [ 3465.332425] SyS_ioctl+0x8f/0xc0 [ 3465.335774] ? do_vfs_ioctl+0x1060/0x1060 [ 3465.339912] do_syscall_64+0x1e8/0x640 [ 3465.343785] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3465.348616] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3465.353788] RIP: 0033:0x45a6f9 [ 3465.356960] RSP: 002b:00007f063534ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3465.364656] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3465.371908] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3465.379161] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3465.386413] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063534b6d4 [ 3465.393665] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3465.427015] warn_alloc_show_mem: 1 callbacks suppressed [ 3465.427021] Mem-Info: [ 3465.472108] active_anon:1343578 inactive_anon:567 isolated_anon:12 [ 3465.472108] active_file:979 inactive_file:1242 isolated_file:69 [ 3465.472108] unevictable:0 dirty:41 writeback:5 unstable:0 [ 3465.472108] slab_reclaimable:16942 slab_unreclaimable:113891 [ 3465.472108] mapped:54055 shmem:7463 pagetables:16510 bounce:0 [ 3465.472108] free:30393 free_pcp:6 free_cma:0 [ 3465.520956] 9pnet: Insufficient options for proto=fd [ 3465.597455] Node 0 active_anon:1995940kB inactive_anon:1336kB active_file:72kB inactive_file:992kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:209584kB dirty:8kB writeback:0kB shmem:11964kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3465.715368] Node 1 active_anon:3378372kB inactive_anon:932kB active_file:2512kB inactive_file:2724kB unevictable:0kB isolated(anon):48kB isolated(file):176kB mapped:4136kB dirty:156kB writeback:120kB shmem:17888kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3465.754862] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3465.775862] Node 0 DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3465.785974] syz-executor.4 cpuset= [ 3465.821764] lowmem_reserve[]: [ 3465.828099] syz4 [ 3465.837404] 0 [ 3465.842535] mems_allowed=0-1 [ 3465.842836] 2569 [ 3465.845558] CPU: 1 PID: 9407 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3465.848871] 2569 [ 3465.849538] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3465.862738] 2569 [ 3465.869481] Call Trace: [ 3465.869502] dump_stack+0x142/0x197 [ 3465.869522] warn_alloc.cold+0x96/0x1af [ 3465.869531] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3465.869552] ? __alloc_pages_direct_compact+0x290/0x380 [ 3465.871891] 2569 [ 3465.874166] __alloc_pages_slowpath+0x23c6/0x2930 [ 3465.874192] ? save_trace+0x290/0x290 [ 3465.874211] ? warn_alloc+0xf0/0xf0 [ 3465.881790] ? __might_sleep+0x93/0xb0 [ 3465.881805] __alloc_pages_nodemask+0x62c/0x7a0 [ 3465.881820] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3465.881833] ? ____cache_alloc_node+0x1be/0x1d0 [ 3465.881844] ? cache_grow_begin+0x335/0x400 [ 3465.881858] cache_grow_begin+0x80/0x400 [ 3465.881869] ? __cpuset_node_allowed+0xff/0x450 [ 3465.881881] fallback_alloc+0x1fd/0x2c0 [ 3465.887176] Node 0 [ 3465.892152] ____cache_alloc_node+0x1be/0x1d0 [ 3465.892168] kmem_cache_alloc_trace+0x213/0x790 [ 3465.892178] ? debug_smp_processor_id+0x1c/0x20 [ 3465.892191] ? perf_trace_lock+0x109/0x500 [ 3465.892212] kvm_dev_ioctl+0x163/0x1620 [ 3465.892229] ? kvm_put_kvm+0xaa0/0xaa0 [ 3465.892245] ? kvm_put_kvm+0xaa0/0xaa0 [ 3465.892257] do_vfs_ioctl+0x7ae/0x1060 [ 3465.892270] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3465.892280] ? lock_downgrade+0x740/0x740 [ 3465.892291] ? ioctl_preallocate+0x1c0/0x1c0 [ 3465.892306] ? __fget+0x237/0x370 [ 3465.892325] ? security_file_ioctl+0x89/0xb0 [ 3465.894523] DMA32 free:38544kB min:36380kB low:45472kB high:54564kB active_anon:1991392kB inactive_anon:1336kB active_file:72kB inactive_file:992kB unevictable:0kB writepending:8kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28588kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3465.899194] SyS_ioctl+0x8f/0xc0 [ 3465.899205] ? do_vfs_ioctl+0x1060/0x1060 [ 3465.899221] do_syscall_64+0x1e8/0x640 [ 3465.899231] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3465.899250] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3465.899259] RIP: 0033:0x45a6f9 [ 3465.899264] RSP: 002b:00007f2bca452c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3465.899275] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3465.899282] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3465.899288] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3465.899293] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4536d4 [ 3465.899299] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3466.099915] lowmem_reserve[]: 0 0 0 0 0 [ 3466.104142] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3466.136614] lowmem_reserve[]: 0 0 0 0 0 [ 3466.140769] Node 1 Normal free:78440kB min:53508kB low:66884kB high:80260kB active_anon:3378388kB inactive_anon:936kB active_file:1204kB inactive_file:1740kB unevictable:0kB writepending:60kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11328kB pagetables:37452kB bounce:0kB free_pcp:504kB local_pcp:0kB free_cma:0kB [ 3466.177083] lowmem_reserve[]: 0 0 0 0 0 [ 3466.181319] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3466.208108] Node 0 DMA32: 1426*4kB (UM) 2144*8kB (UME) 946*16kB (UME) 20*32kB (UME) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 38632kB [ 3466.229015] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3466.239870] Node 1 Normal: 1537*4kB (UME) 845*8kB (UME) 2017*16kB (UME) 1050*32kB (UMEH) 12*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 79548kB [ 3466.261333] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3466.274952] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3466.285673] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3466.299239] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3466.314709] 8243 total pagecache pages [ 3466.318620] 0 pages in swap cache [ 3466.324028] Swap cache stats: add 0, delete 0, find 0/0 [ 3466.329475] Free swap = 0kB [ 3466.337006] Total swap = 0kB [ 3466.342451] 1965979 pages RAM [ 3466.345565] 0 pages HighMem/MovableOnly [ 3466.349553] 335858 pages reserved [ 3466.358239] 0 pages cma reserved 20:18:47 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfd', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:18:47 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:47 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:47 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:47 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = openat$proc_capi20ncci(0xffffffffffffff9c, &(0x7f0000000000)='/proc/capi/capi20ncci\x00', 0x12000, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$VT_RELDISP(r3, 0x5605) setsockopt$TIPC_DEST_DROPPABLE(r1, 0x10f, 0x81, &(0x7f0000000080)=0x8001, 0x4) r4 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000004700)='/selinux/enforce\x00', 0x8000, 0x0) setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r4, 0x6, 0x1d, &(0x7f0000004740)={0x80000000, 0x9, 0x4, 0x1, 0x3}, 0x14) keyctl$join(0x1, 0x0) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) open(&(0x7f00000000c0)='./file0\x00', 0x40000, 0x104) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$KVM_HAS_DEVICE_ATTR(r6, 0x4018aee3, &(0x7f0000000140)={0x0, 0xb, 0x5, &(0x7f0000000100)=0x112}) [ 3469.372271] 9pnet: Insufficient options for proto=fd [ 3469.378132] 9pnet: Insufficient options for proto=fd [ 3469.387946] 9pnet: Insufficient options for proto=fd [ 3469.421724] syz-executor.2: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3469.422793] syz-executor.4: [ 3469.436848] syz-executor.3: [ 3469.443274] syz-executor.0: [ 3469.444818] page allocation failure: order:5 [ 3469.447784] page allocation failure: order:5 [ 3469.452900] , mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask= [ 3469.458960] page allocation failure: order:5 20:18:47 executing program 5: r0 = syz_open_dev$vbi(&(0x7f0000000540)='/dev/vbi#\x00', 0x1, 0x2) ioctl$VIDIOC_SUBDEV_G_FRAME_INTERVAL(0xffffffffffffffff, 0xc0305615, &(0x7f0000000000)={0x0, {0x9, 0x7fffffff}}) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r0, 0x6612) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0285628, &(0x7f00000005c0)={0xa30004, 0x0, 0x9, [], 0x0}) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f00000002c0)='/proc/self/net/pfkey\x00', 0x8000, 0x0) r2 = syz_init_net_socket$rose(0xb, 0x5, 0x0) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$VIDIOC_S_EXT_CTRLS(r0, 0xc0205648, &(0x7f0000000180)={0xa30000, 0x3, 0x1000, [], &(0x7f0000000140)={0x4c857e, 0x6, [], @p_u16=&(0x7f0000000100)=0x1f}}) getsockopt$rose(r2, 0x104, 0x3, 0x0, &(0x7f00000001c0)=0x105) fcntl$getownex(r2, 0x10, &(0x7f0000000040)={0x0, 0x0}) timer_create(0x7, &(0x7f0000000080)={0x0, 0x5, 0x7, @tid=r3}, &(0x7f00000000c0)) setsockopt$TIPC_MCAST_REPLICAST(r1, 0x10f, 0x86) fanotify_init(0x4, 0x800) [ 3469.462008] syz-executor.2 cpuset= [ 3469.466212] , mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask= [ 3469.473560] , mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask= [ 3469.476389] (null) [ 3469.479893] (null) [ 3469.490311] (null) [ 3469.492698] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 3469.498392] syz2 mems_allowed=0-1 [ 3469.498860] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 3469.506532] CPU: 0 PID: 9418 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3469.515588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3469.524935] Call Trace: [ 3469.527514] dump_stack+0x142/0x197 [ 3469.531134] warn_alloc.cold+0x96/0x1af [ 3469.535097] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3469.539942] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3469.545218] __alloc_pages_slowpath+0x23c6/0x2930 [ 3469.550066] ? save_trace+0x290/0x290 [ 3469.553868] ? warn_alloc+0xf0/0xf0 [ 3469.557513] ? __might_sleep+0x93/0xb0 [ 3469.561390] __alloc_pages_nodemask+0x62c/0x7a0 [ 3469.566057] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3469.571071] ? ____cache_alloc_node+0x1be/0x1d0 [ 3469.575725] ? cache_grow_begin+0x335/0x400 [ 3469.580039] cache_grow_begin+0x80/0x400 [ 3469.584090] ? __cpuset_node_allowed+0xff/0x450 [ 3469.588898] fallback_alloc+0x1fd/0x2c0 [ 3469.592889] ____cache_alloc_node+0x1be/0x1d0 [ 3469.597378] kmem_cache_alloc_trace+0x213/0x790 [ 3469.602035] ? debug_smp_processor_id+0x1c/0x20 [ 3469.606697] ? perf_trace_lock+0x109/0x500 [ 3469.610925] kvm_dev_ioctl+0x163/0x1620 [ 3469.614901] ? kvm_put_kvm+0xaa0/0xaa0 [ 3469.618787] ? kvm_put_kvm+0xaa0/0xaa0 [ 3469.622673] do_vfs_ioctl+0x7ae/0x1060 [ 3469.626555] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3469.631299] ? lock_downgrade+0x740/0x740 [ 3469.635434] ? ioctl_preallocate+0x1c0/0x1c0 [ 3469.639830] ? __fget+0x237/0x370 [ 3469.643287] ? security_file_ioctl+0x89/0xb0 [ 3469.647704] SyS_ioctl+0x8f/0xc0 [ 3469.651074] ? do_vfs_ioctl+0x1060/0x1060 [ 3469.655214] do_syscall_64+0x1e8/0x640 [ 3469.659087] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3469.663922] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3469.669097] RIP: 0033:0x45a6f9 [ 3469.672285] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3469.679995] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3469.687261] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 3469.694524] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3469.701794] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3469.709055] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3469.716337] CPU: 1 PID: 9416 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3469.724306] syz-executor.3 cpuset= [ 3469.724314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3469.724323] Call Trace: [ 3469.734823] syz3 [ 3469.737221] dump_stack+0x142/0x197 [ 3469.745377] warn_alloc.cold+0x96/0x1af [ 3469.749365] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3469.752736] mems_allowed=0-1 [ 3469.754220] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3469.754235] __alloc_pages_slowpath+0x23c6/0x2930 [ 3469.767430] ? save_trace+0x290/0x290 [ 3469.771245] ? warn_alloc+0xf0/0xf0 [ 3469.774884] ? __might_sleep+0x93/0xb0 [ 3469.778782] __alloc_pages_nodemask+0x62c/0x7a0 [ 3469.783454] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3469.788473] ? ____cache_alloc_node+0x1be/0x1d0 [ 3469.793155] ? cache_grow_begin+0x335/0x400 [ 3469.797481] cache_grow_begin+0x80/0x400 [ 3469.801547] ? __cpuset_node_allowed+0xff/0x450 [ 3469.806216] fallback_alloc+0x1fd/0x2c0 [ 3469.810186] ____cache_alloc_node+0x1be/0x1d0 [ 3469.814684] kmem_cache_alloc_trace+0x213/0x790 [ 3469.819355] ? debug_smp_processor_id+0x1c/0x20 [ 3469.824030] ? perf_trace_lock+0x109/0x500 [ 3469.828289] kvm_dev_ioctl+0x163/0x1620 [ 3469.832275] ? kvm_put_kvm+0xaa0/0xaa0 [ 3469.836177] ? kvm_put_kvm+0xaa0/0xaa0 [ 3469.840058] do_vfs_ioctl+0x7ae/0x1060 [ 3469.843940] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3469.848691] ? lock_downgrade+0x740/0x740 [ 3469.852841] ? ioctl_preallocate+0x1c0/0x1c0 [ 3469.857252] ? __fget+0x237/0x370 [ 3469.860717] ? security_file_ioctl+0x89/0xb0 [ 3469.865132] SyS_ioctl+0x8f/0xc0 [ 3469.868493] ? do_vfs_ioctl+0x1060/0x1060 [ 3469.872647] do_syscall_64+0x1e8/0x640 [ 3469.876538] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3469.881400] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3469.886586] RIP: 0033:0x45a6f9 [ 3469.889766] RSP: 002b:00007f063534ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3469.897470] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3469.904741] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3469.912010] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3469.919276] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063534b6d4 [ 3469.926537] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3469.933813] CPU: 0 PID: 9422 Comm: syz-executor.3 Not tainted 4.14.158-syzkaller #0 [ 3469.941618] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3469.950961] Call Trace: [ 3469.953540] dump_stack+0x142/0x197 [ 3469.957160] warn_alloc.cold+0x96/0x1af [ 3469.961122] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3469.965979] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3469.971251] __alloc_pages_slowpath+0x23c6/0x2930 [ 3469.976089] ? save_trace+0x290/0x290 [ 3469.979879] ? warn_alloc+0xf0/0xf0 [ 3469.983513] ? __might_sleep+0x93/0xb0 [ 3469.987394] __alloc_pages_nodemask+0x62c/0x7a0 [ 3469.992052] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3469.997065] ? ____cache_alloc_node+0x1be/0x1d0 [ 3470.001724] ? cache_grow_begin+0x335/0x400 [ 3470.006033] cache_grow_begin+0x80/0x400 [ 3470.010088] ? __cpuset_node_allowed+0xff/0x450 [ 3470.014750] fallback_alloc+0x1fd/0x2c0 [ 3470.018713] ____cache_alloc_node+0x1be/0x1d0 [ 3470.023200] kmem_cache_alloc_trace+0x213/0x790 [ 3470.027861] ? debug_smp_processor_id+0x1c/0x20 [ 3470.032514] ? perf_trace_lock+0x109/0x500 [ 3470.036739] kvm_dev_ioctl+0x163/0x1620 [ 3470.040719] ? kvm_put_kvm+0xaa0/0xaa0 [ 3470.044624] ? kvm_put_kvm+0xaa0/0xaa0 [ 3470.048507] do_vfs_ioctl+0x7ae/0x1060 [ 3470.052401] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3470.057156] ? lock_downgrade+0x740/0x740 [ 3470.061300] ? ioctl_preallocate+0x1c0/0x1c0 [ 3470.065699] ? __fget+0x237/0x370 [ 3470.069147] ? security_file_ioctl+0x89/0xb0 [ 3470.073691] SyS_ioctl+0x8f/0xc0 [ 3470.077051] ? do_vfs_ioctl+0x1060/0x1060 [ 3470.081214] do_syscall_64+0x1e8/0x640 [ 3470.085093] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3470.089943] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3470.095131] RIP: 0033:0x45a6f9 [ 3470.098307] RSP: 002b:00007ff826292c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3470.106010] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3470.113273] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3470.120531] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3470.127797] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff8262936d4 [ 3470.135068] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3470.142450] CPU: 1 PID: 9415 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3470.150253] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3470.159603] Call Trace: [ 3470.162199] dump_stack+0x142/0x197 [ 3470.165863] warn_alloc.cold+0x96/0x1af [ 3470.169838] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3470.174694] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3470.179975] __alloc_pages_slowpath+0x23c6/0x2930 [ 3470.184831] ? save_trace+0x290/0x290 [ 3470.188642] ? warn_alloc+0xf0/0xf0 [ 3470.192283] ? __might_sleep+0x93/0xb0 [ 3470.196174] __alloc_pages_nodemask+0x62c/0x7a0 [ 3470.200847] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3470.205865] ? ____cache_alloc_node+0x1be/0x1d0 [ 3470.210538] ? cache_grow_begin+0x335/0x400 [ 3470.214864] cache_grow_begin+0x80/0x400 [ 3470.218926] ? __cpuset_node_allowed+0xff/0x450 [ 3470.223599] fallback_alloc+0x1fd/0x2c0 [ 3470.227589] ____cache_alloc_node+0x1be/0x1d0 [ 3470.232091] kmem_cache_alloc_trace+0x213/0x790 [ 3470.236763] ? debug_smp_processor_id+0x1c/0x20 [ 3470.241442] ? perf_trace_lock+0x109/0x500 [ 3470.245693] kvm_dev_ioctl+0x163/0x1620 [ 3470.249679] ? kvm_put_kvm+0xaa0/0xaa0 [ 3470.253575] ? kvm_put_kvm+0xaa0/0xaa0 [ 3470.257467] do_vfs_ioctl+0x7ae/0x1060 [ 3470.261356] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3470.266118] ? lock_downgrade+0x740/0x740 [ 3470.270267] ? ioctl_preallocate+0x1c0/0x1c0 [ 3470.274662] ? __fget+0x237/0x370 [ 3470.278116] ? security_file_ioctl+0x89/0xb0 [ 3470.282513] SyS_ioctl+0x8f/0xc0 [ 3470.285862] ? do_vfs_ioctl+0x1060/0x1060 [ 3470.289999] do_syscall_64+0x1e8/0x640 [ 3470.293872] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3470.298727] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3470.303912] RIP: 0033:0x45a6f9 [ 3470.307088] RSP: 002b:00007f2bca452c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3470.314782] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3470.322037] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3470.329293] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3470.336547] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4536d4 [ 3470.343806] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3470.361576] warn_alloc_show_mem: 2 callbacks suppressed [ 3470.361581] Mem-Info: [ 3470.369572] active_anon:1343624 inactive_anon:566 isolated_anon:0 [ 3470.369572] active_file:854 inactive_file:1257 isolated_file:18 [ 3470.369572] unevictable:0 dirty:89 writeback:0 unstable:0 [ 3470.369572] slab_reclaimable:16966 slab_unreclaimable:113904 [ 3470.369572] mapped:53754 shmem:7461 pagetables:16560 bounce:0 [ 3470.369572] free:30398 free_pcp:265 free_cma:0 [ 3470.409679] Node 0 active_anon:1996264kB inactive_anon:1328kB active_file:252kB inactive_file:1548kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:210032kB dirty:32kB writeback:0kB shmem:11956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3470.439019] Node 1 active_anon:3378132kB inactive_anon:936kB active_file:3328kB inactive_file:4004kB unevictable:0kB isolated(anon):0kB isolated(file):72kB mapped:5184kB dirty:324kB writeback:0kB shmem:17888kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3470.478597] Node 0 DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3470.520975] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3470.526074] Node 0 DMA32 free:36964kB min:36380kB low:45472kB high:54564kB active_anon:1991516kB inactive_anon:1328kB active_file:252kB inactive_file:1548kB unevictable:0kB writepending:32kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28568kB bounce:0kB free_pcp:688kB local_pcp:352kB free_cma:0kB [ 3470.556821] lowmem_reserve[]: 0 0 0 0 0 [ 3470.570899] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3470.597660] lowmem_reserve[]: 0 0 0 0 0 [ 3470.602133] Node 1 Normal free:75268kB min:53508kB low:66884kB high:80260kB active_anon:3378232kB inactive_anon:936kB active_file:3180kB inactive_file:3080kB unevictable:0kB writepending:324kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11200kB pagetables:37524kB bounce:0kB free_pcp:912kB local_pcp:228kB free_cma:0kB [ 3470.632124] lowmem_reserve[]: 0 0 0 0 0 [ 3470.636141] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 5*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10368kB [ 3470.653788] Node 0 DMA32: 1213*4kB (UM) 2110*8kB (UME) 926*16kB (UME) 15*32kB (UME) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 37028kB [ 3470.667798] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3470.679040] Node 1 Normal: 1367*4kB (UME) 646*8kB (UME) 2007*16kB (UME) 1046*32kB (UMEH) 4*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 76476kB [ 3470.693893] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3470.703691] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3470.712370] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3470.721648] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3470.730314] 9243 total pagecache pages [ 3470.734340] 0 pages in swap cache [ 3470.737794] Swap cache stats: add 0, delete 0, find 0/0 [ 3470.743759] Free swap = 0kB [ 3470.746795] Total swap = 0kB [ 3470.749825] 1965979 pages RAM [ 3470.753412] 0 pages HighMem/MovableOnly [ 3470.758142] 335858 pages reserved [ 3470.762009] 0 pages cma reserved 20:18:51 executing program 1: open$dir(&(0x7f0000000000)='./file0\x00', 0x14000, 0x180) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) 20:18:51 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:51 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:51 executing program 5: r0 = syz_open_dev$vbi(&(0x7f0000000540)='/dev/vbi#\x00', 0x1, 0x2) ioctl$VIDIOC_TRY_EXT_CTRLS(r0, 0xc0285628, &(0x7f00000005c0)={0x980000, 0x0, 0x0, [], 0x0}) memfd_create(&(0x7f0000000000)='U$\x00', 0x2) 20:18:51 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:18:51 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3473.735034] syz-executor.0: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3473.772778] 9pnet: Insufficient options for proto=fd 20:18:52 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:52 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)={0xffffffff}) [ 3473.784507] 9pnet: Insufficient options for proto=fd [ 3473.789909] syz-executor.2: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3473.806372] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 3473.818473] 9pnet: Insufficient options for proto=fd [ 3473.834306] CPU: 1 PID: 9445 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3473.842149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3473.851512] Call Trace: [ 3473.854108] dump_stack+0x142/0x197 [ 3473.854708] syz-executor.2 cpuset= [ 3473.857742] warn_alloc.cold+0x96/0x1af [ 3473.857754] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3473.857776] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3473.857793] __alloc_pages_slowpath+0x23c6/0x2930 [ 3473.877446] syz2 [ 3473.880234] ? save_trace+0x290/0x290 [ 3473.886018] ? warn_alloc+0xf0/0xf0 [ 3473.888116] mems_allowed=0-1 [ 3473.889665] ? __might_sleep+0x93/0xb0 [ 3473.889687] __alloc_pages_nodemask+0x62c/0x7a0 [ 3473.889702] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3473.901344] ? ____cache_alloc_node+0x1be/0x1d0 [ 3473.911000] ? cache_grow_begin+0x335/0x400 [ 3473.911017] cache_grow_begin+0x80/0x400 [ 3473.911031] ? __cpuset_node_allowed+0xff/0x450 [ 3473.911045] fallback_alloc+0x1fd/0x2c0 [ 3473.911063] ____cache_alloc_node+0x1be/0x1d0 [ 3473.911077] kmem_cache_alloc_trace+0x213/0x790 [ 3473.911089] ? debug_smp_processor_id+0x1c/0x20 [ 3473.941926] ? perf_trace_lock+0x109/0x500 [ 3473.941953] kvm_dev_ioctl+0x163/0x1620 [ 3473.950248] ? kvm_put_kvm+0xaa0/0xaa0 [ 3473.954148] ? kvm_put_kvm+0xaa0/0xaa0 [ 3473.958051] do_vfs_ioctl+0x7ae/0x1060 [ 3473.961955] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3473.966716] ? lock_downgrade+0x740/0x740 [ 3473.970869] ? ioctl_preallocate+0x1c0/0x1c0 [ 3473.975357] ? __fget+0x237/0x370 [ 3473.978830] ? security_file_ioctl+0x89/0xb0 [ 3473.983240] SyS_ioctl+0x8f/0xc0 [ 3473.983252] ? do_vfs_ioctl+0x1060/0x1060 [ 3473.983270] do_syscall_64+0x1e8/0x640 [ 3473.983280] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3473.983302] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3474.004679] RIP: 0033:0x45a6f9 [ 3474.007973] RSP: 002b:00007f063534ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3474.015690] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3474.022959] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3474.030225] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3474.037494] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063534b6d4 [ 3474.044756] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3474.052049] CPU: 0 PID: 9446 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3474.059856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3474.069215] Call Trace: [ 3474.071811] dump_stack+0x142/0x197 [ 3474.075451] warn_alloc.cold+0x96/0x1af [ 3474.079426] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3474.079449] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3474.079464] __alloc_pages_slowpath+0x23c6/0x2930 [ 3474.089562] ? save_trace+0x290/0x290 [ 3474.098174] ? warn_alloc+0xf0/0xf0 [ 3474.101826] ? __might_sleep+0x93/0xb0 [ 3474.105719] __alloc_pages_nodemask+0x62c/0x7a0 [ 3474.108216] warn_alloc_show_mem: 3 callbacks suppressed [ 3474.108220] Mem-Info: [ 3474.110393] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3474.110407] ? ____cache_alloc_node+0x1be/0x1d0 [ 3474.110419] ? cache_grow_begin+0x335/0x400 [ 3474.110434] cache_grow_begin+0x80/0x400 [ 3474.110444] ? __cpuset_node_allowed+0xff/0x450 [ 3474.110456] fallback_alloc+0x1fd/0x2c0 [ 3474.110472] ____cache_alloc_node+0x1be/0x1d0 [ 3474.110488] kmem_cache_alloc_trace+0x213/0x790 [ 3474.115986] active_anon:1343659 inactive_anon:568 isolated_anon:0 [ 3474.115986] active_file:1066 inactive_file:983 isolated_file:28 [ 3474.115986] unevictable:0 dirty:26 writeback:25 unstable:0 [ 3474.115986] slab_reclaimable:16969 slab_unreclaimable:114379 [ 3474.115986] mapped:54136 shmem:7463 pagetables:16523 bounce:0 [ 3474.115986] free:29680 free_pcp:266 free_cma:0 [ 3474.118239] ? debug_smp_processor_id+0x1c/0x20 [ 3474.118253] ? perf_trace_lock+0x109/0x500 [ 3474.118274] kvm_dev_ioctl+0x163/0x1620 [ 3474.123356] Node 0 active_anon:1995952kB inactive_anon:1336kB active_file:528kB inactive_file:376kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:209624kB dirty:0kB writeback:48kB shmem:11964kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3474.127935] ? kvm_put_kvm+0xaa0/0xaa0 [ 3474.127953] ? kvm_put_kvm+0xaa0/0xaa0 [ 3474.127967] do_vfs_ioctl+0x7ae/0x1060 [ 3474.132437] Node 1 active_anon:3378684kB inactive_anon:936kB active_file:3736kB inactive_file:3556kB unevictable:0kB isolated(anon):0kB isolated(file):112kB mapped:6920kB dirty:116kB writeback:52kB shmem:17888kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3474.136319] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3474.136330] ? lock_downgrade+0x740/0x740 [ 3474.136342] ? ioctl_preallocate+0x1c0/0x1c0 [ 3474.136354] ? __fget+0x237/0x370 [ 3474.141109] Node 0 [ 3474.144988] ? security_file_ioctl+0x89/0xb0 [ 3474.145004] SyS_ioctl+0x8f/0xc0 [ 3474.145017] ? do_vfs_ioctl+0x1060/0x1060 [ 3474.149568] DMA free:10368kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3474.154142] do_syscall_64+0x1e8/0x640 [ 3474.154152] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3474.154172] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3474.154181] RIP: 0033:0x45a6f9 [ 3474.154186] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3474.154196] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3474.154201] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 3474.154206] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3474.154212] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 20:18:52 executing program 1: ioctl$KDSETKEYCODE(0xffffffffffffffff, 0x4b4d, &(0x7f0000000040)) r0 = socket$inet_sctp(0x2, 0x5, 0x84) ioctl(r0, 0x80000001, &(0x7f0000000080)="eea095036f43b46dc7587029f0464b39813248d119e5b24fcd043916940ee1033c7a6dba26b50cb071a5831ef59fa3fb3a73aacca9044a1d60514c61e1f1211390433e19bf79071736adae8b1b88e9aeb83ab520e379d9076d83b4d6fe92131be4e0e7eb9b1b30691ed0cfffc44fde65bffe03beb0a8ab3a2a3afe2164cd78544369f163f871eed38c5c91db2f7624b9670992b80a0c70907e35a02d12120e7672d120d7fd12d6601579") [ 3474.154217] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3474.279616] syz-executor.5: [ 3474.286609] syz-executor.4: [ 3474.339568] page allocation failure: order:5 [ 3474.413976] page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3474.423133] , mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask= [ 3474.430118] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 3474.444278] CPU: 1 PID: 9449 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3474.452085] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3474.461434] Call Trace: [ 3474.464013] dump_stack+0x142/0x197 [ 3474.467628] warn_alloc.cold+0x96/0x1af [ 3474.471585] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3474.476422] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3474.481686] __alloc_pages_slowpath+0x23c6/0x2930 [ 3474.486520] ? save_trace+0x290/0x290 [ 3474.490312] ? warn_alloc+0xf0/0xf0 [ 3474.493932] ? __might_sleep+0x93/0xb0 [ 3474.497804] __alloc_pages_nodemask+0x62c/0x7a0 [ 3474.502459] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3474.507464] ? ____cache_alloc_node+0x1be/0x1d0 [ 3474.512119] ? cache_grow_begin+0x335/0x400 [ 3474.516426] cache_grow_begin+0x80/0x400 [ 3474.520482] ? __cpuset_node_allowed+0xff/0x450 [ 3474.525147] fallback_alloc+0x1fd/0x2c0 [ 3474.529108] ____cache_alloc_node+0x1be/0x1d0 [ 3474.533595] kmem_cache_alloc_trace+0x213/0x790 [ 3474.538258] ? debug_smp_processor_id+0x1c/0x20 [ 3474.542936] ? perf_trace_lock+0x109/0x500 [ 3474.547173] kvm_dev_ioctl+0x163/0x1620 [ 3474.551264] ? kvm_put_kvm+0xaa0/0xaa0 [ 3474.555158] ? kvm_put_kvm+0xaa0/0xaa0 [ 3474.559034] do_vfs_ioctl+0x7ae/0x1060 [ 3474.562909] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3474.567652] ? lock_downgrade+0x740/0x740 [ 3474.571889] ? ioctl_preallocate+0x1c0/0x1c0 [ 3474.576303] ? __fget+0x237/0x370 [ 3474.579754] ? security_file_ioctl+0x89/0xb0 [ 3474.584156] SyS_ioctl+0x8f/0xc0 [ 3474.587521] ? do_vfs_ioctl+0x1060/0x1060 [ 3474.591658] do_syscall_64+0x1e8/0x640 [ 3474.595529] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3474.600368] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3474.605543] RIP: 0033:0x45a6f9 [ 3474.608716] RSP: 002b:00007f2bca452c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3474.616407] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3474.623664] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3474.630916] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 20:18:53 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x0) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3474.638176] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4536d4 [ 3474.645436] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3474.654107] (null) [ 3474.684505] syz-executor.5 cpuset=syz5 mems_allowed=0-1 [ 3474.688939] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3474.696356] Node 0 DMA32 free:38840kB min:36380kB low:45472kB high:54564kB active_anon:1991416kB inactive_anon:1340kB active_file:496kB inactive_file:328kB unevictable:0kB writepending:48kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28336kB bounce:0kB free_pcp:560kB local_pcp:200kB free_cma:0kB [ 3474.707131] CPU: 0 PID: 9461 Comm: syz-executor.5 Not tainted 4.14.158-syzkaller #0 [ 3474.728777] lowmem_reserve[]: [ 3474.733584] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3474.733589] Call Trace: [ 3474.733606] dump_stack+0x142/0x197 [ 3474.733623] warn_alloc.cold+0x96/0x1af [ 3474.733634] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3474.733655] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3474.736787] 0 [ 3474.746093] __alloc_pages_slowpath+0x23c6/0x2930 [ 3474.746115] ? save_trace+0x290/0x290 [ 3474.746133] ? warn_alloc+0xf0/0xf0 [ 3474.746154] ? __might_sleep+0x93/0xb0 [ 3474.746167] __alloc_pages_nodemask+0x62c/0x7a0 [ 3474.746181] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3474.748794] 0 [ 3474.752353] ? ____cache_alloc_node+0x1be/0x1d0 [ 3474.752366] ? cache_grow_begin+0x335/0x400 [ 3474.752381] cache_grow_begin+0x80/0x400 [ 3474.752392] ? __cpuset_node_allowed+0xff/0x450 [ 3474.752404] fallback_alloc+0x1fd/0x2c0 [ 3474.756386] 0 [ 3474.761188] ____cache_alloc_node+0x1be/0x1d0 [ 3474.761203] kmem_cache_alloc_trace+0x213/0x790 [ 3474.761212] ? debug_smp_processor_id+0x1c/0x20 [ 3474.761223] ? perf_trace_lock+0x109/0x500 [ 3474.761243] kvm_dev_ioctl+0x163/0x1620 [ 3474.761262] ? kvm_put_kvm+0xaa0/0xaa0 [ 3474.766557] 0 [ 3474.768303] ? kvm_put_kvm+0xaa0/0xaa0 [ 3474.768317] do_vfs_ioctl+0x7ae/0x1060 [ 3474.773185] 0 [ 3474.776933] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3474.776944] ? lock_downgrade+0x740/0x740 [ 3474.776957] ? ioctl_preallocate+0x1c0/0x1c0 [ 3474.776970] ? __fget+0x237/0x370 [ 3474.784482] ? security_file_ioctl+0x89/0xb0 [ 3474.784497] SyS_ioctl+0x8f/0xc0 [ 3474.789186] Node 0 [ 3474.794141] ? do_vfs_ioctl+0x1060/0x1060 [ 3474.794155] do_syscall_64+0x1e8/0x640 [ 3474.794164] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3474.794183] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3474.794191] RIP: 0033:0x45a6f9 [ 3474.794196] RSP: 002b:00007f5026ac1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3474.794217] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3474.794223] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3474.794228] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 20:18:53 executing program 2: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3474.794233] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5026ac26d4 [ 3474.794240] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3474.950532] syz-executor.3: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3475.000501] syz-executor.3 cpuset=syz3 mems_allowed=0-1 [ 3475.017869] CPU: 1 PID: 9468 Comm: syz-executor.3 Not tainted 4.14.158-syzkaller #0 [ 3475.025710] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3475.035067] Call Trace: [ 3475.037666] dump_stack+0x142/0x197 [ 3475.041306] warn_alloc.cold+0x96/0x1af [ 3475.045283] ? zone_watermark_ok_safe+0x2b0/0x2b0 20:18:53 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) fremovexattr(r0, &(0x7f0000000000)=@random={'security.', '.\x00'}) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) [ 3475.050135] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3475.055429] __alloc_pages_slowpath+0x23c6/0x2930 [ 3475.060282] ? save_trace+0x290/0x290 [ 3475.064097] ? warn_alloc+0xf0/0xf0 [ 3475.067737] ? __might_sleep+0x93/0xb0 [ 3475.071632] __alloc_pages_nodemask+0x62c/0x7a0 [ 3475.076313] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3475.081332] ? ____cache_alloc_node+0x1be/0x1d0 [ 3475.086004] ? cache_grow_begin+0x335/0x400 [ 3475.090336] cache_grow_begin+0x80/0x400 [ 3475.094400] ? __cpuset_node_allowed+0xff/0x450 [ 3475.099081] fallback_alloc+0x1fd/0x2c0 [ 3475.103068] ____cache_alloc_node+0x1be/0x1d0 [ 3475.107572] kmem_cache_alloc_trace+0x213/0x790 [ 3475.112238] ? debug_smp_processor_id+0x1c/0x20 [ 3475.116895] ? perf_trace_lock+0x109/0x500 [ 3475.121138] kvm_dev_ioctl+0x163/0x1620 [ 3475.125105] ? kvm_put_kvm+0xaa0/0xaa0 [ 3475.128982] ? kvm_put_kvm+0xaa0/0xaa0 [ 3475.132857] do_vfs_ioctl+0x7ae/0x1060 [ 3475.136731] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3475.141478] ? lock_downgrade+0x740/0x740 [ 3475.145611] ? ioctl_preallocate+0x1c0/0x1c0 [ 3475.150004] ? __fget+0x237/0x370 [ 3475.153454] ? security_file_ioctl+0x89/0xb0 [ 3475.157850] SyS_ioctl+0x8f/0xc0 [ 3475.161207] ? do_vfs_ioctl+0x1060/0x1060 [ 3475.165341] do_syscall_64+0x1e8/0x640 [ 3475.169212] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3475.174043] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3475.179215] RIP: 0033:0x45a6f9 [ 3475.182562] RSP: 002b:00007ff826292c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3475.190253] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 20:18:53 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3475.197516] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3475.204770] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3475.212024] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff8262936d4 [ 3475.219275] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3475.252755] syz-executor.2: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3475.270358] syz-executor.2 cpuset=syz2 mems_allowed=0-1 [ 3475.276520] CPU: 1 PID: 9478 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3475.284336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3475.293692] Call Trace: [ 3475.296287] dump_stack+0x142/0x197 [ 3475.299934] warn_alloc.cold+0x96/0x1af [ 3475.303917] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3475.308774] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3475.314067] __alloc_pages_slowpath+0x23c6/0x2930 [ 3475.318929] ? save_trace+0x290/0x290 [ 3475.322743] ? warn_alloc+0xf0/0xf0 [ 3475.326397] ? __might_sleep+0x93/0xb0 [ 3475.330289] __alloc_pages_nodemask+0x62c/0x7a0 [ 3475.334217] warn_alloc_show_mem: 2 callbacks suppressed [ 3475.334221] Mem-Info: [ 3475.334958] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3475.347709] ? ____cache_alloc_node+0x1be/0x1d0 20:18:53 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$KVM_SET_CLOCK(r2, 0x4030ae7b, &(0x7f0000000000)={0x80, 0x7}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r4) ioctl$FS_IOC_FIEMAP(r3, 0xc020660b, &(0x7f0000000280)=ANY=[@ANYBLOB="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"]) fallocate(r4, 0x0, 0x3, 0x1) [ 3475.352384] ? cache_grow_begin+0x335/0x400 [ 3475.356723] cache_grow_begin+0x80/0x400 [ 3475.360789] ? __cpuset_node_allowed+0xff/0x450 [ 3475.365324] active_anon:1343605 inactive_anon:566 isolated_anon:0 [ 3475.365324] active_file:1558 inactive_file:1320 isolated_file:46 [ 3475.365324] unevictable:0 dirty:19 writeback:35 unstable:0 [ 3475.365324] slab_reclaimable:16993 slab_unreclaimable:113960 [ 3475.365324] mapped:54314 shmem:7461 pagetables:16559 bounce:0 [ 3475.365324] free:29512 free_pcp:131 free_cma:0 [ 3475.365463] fallback_alloc+0x1fd/0x2c0 [ 3475.365495] ____cache_alloc_node+0x1be/0x1d0 [ 3475.407886] kmem_cache_alloc_trace+0x213/0x790 [ 3475.412562] ? debug_smp_processor_id+0x1c/0x20 [ 3475.417235] ? perf_trace_lock+0x109/0x500 [ 3475.421483] kvm_dev_ioctl+0x163/0x1620 [ 3475.425471] ? kvm_put_kvm+0xaa0/0xaa0 [ 3475.429373] ? kvm_put_kvm+0xaa0/0xaa0 [ 3475.433269] do_vfs_ioctl+0x7ae/0x1060 [ 3475.437161] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3475.441924] ? lock_downgrade+0x740/0x740 [ 3475.446079] ? ioctl_preallocate+0x1c0/0x1c0 [ 3475.450496] ? __fget+0x237/0x370 [ 3475.453967] ? security_file_ioctl+0x89/0xb0 [ 3475.458389] SyS_ioctl+0x8f/0xc0 [ 3475.461763] ? do_vfs_ioctl+0x1060/0x1060 [ 3475.465921] do_syscall_64+0x1e8/0x640 [ 3475.469812] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3475.474664] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3475.479855] RIP: 0033:0x45a6f9 [ 3475.483049] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3475.490757] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 20:18:53 executing program 1: syz_open_dev$tty1(0xc, 0x4, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) openat$vsock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vsock\x00', 0x80, 0x0) r2 = openat$cgroup_ro(r1, &(0x7f0000000000)='cpuacct.usage_all\x00', 0x0, 0x0) ioctl$KDSETKEYCODE(r2, 0x4b4d, &(0x7f0000000040)={0x2, 0x404}) [ 3475.498029] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3475.505313] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3475.512589] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3475.519860] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3475.532068] Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3475.540621] syz-executor.4: [ 3475.583128] lowmem_reserve[]: 0 0 0 0 0 [ 3475.591751] Node 1 Normal free:68496kB min:53508kB low:66884kB high:80260kB active_anon:3378572kB inactive_anon:936kB active_file:5832kB inactive_file:5288kB unevictable:0kB writepending:208kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11488kB pagetables:37912kB bounce:0kB free_pcp:612kB local_pcp:404kB free_cma:0kB [ 3475.617924] Node 0 active_anon:1995848kB inactive_anon:1328kB active_file:264kB inactive_file:104kB unevictable:0kB isolated(anon):0kB isolated(file):56kB mapped:209464kB dirty:4kB writeback:4kB shmem:11956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3475.632333] lowmem_reserve[]: [ 3475.658202] page allocation failure: order:5 [ 3475.661524] 0 0 0 0 0 [ 3475.669417] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 6*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10400kB [ 3475.670315] , mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask= [ 3475.717468] Node 0 [ 3475.717649] (null) [ 3475.726060] DMA32: 1538*4kB (UM) 2157*8kB (UM) 937*16kB (UME) 28*32kB (UME) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39296kB [ 3475.729462] syz-executor.4 cpuset= [ 3475.741622] Node 1 active_anon:3378772kB inactive_anon:936kB active_file:5780kB inactive_file:5296kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:7592kB dirty:72kB writeback:0kB shmem:17888kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3475.802672] syz4 mems_allowed=0-1 [ 3475.815302] CPU: 0 PID: 9484 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3475.816060] Node 0 [ 3475.823127] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3475.823133] Call Trace: [ 3475.823150] dump_stack+0x142/0x197 [ 3475.823169] warn_alloc.cold+0x96/0x1af [ 3475.823180] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3475.823200] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3475.823214] __alloc_pages_slowpath+0x23c6/0x2930 [ 3475.823235] ? save_trace+0x290/0x290 [ 3475.823253] ? warn_alloc+0xf0/0xf0 [ 3475.823283] ? __might_sleep+0x93/0xb0 [ 3475.823295] __alloc_pages_nodemask+0x62c/0x7a0 [ 3475.823309] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3475.823320] ? ____cache_alloc_node+0x1be/0x1d0 [ 3475.823330] ? cache_grow_begin+0x335/0x400 [ 3475.823345] cache_grow_begin+0x80/0x400 [ 3475.823356] ? __cpuset_node_allowed+0xff/0x450 [ 3475.823368] fallback_alloc+0x1fd/0x2c0 [ 3475.823383] ____cache_alloc_node+0x1be/0x1d0 [ 3475.823398] kmem_cache_alloc_trace+0x213/0x790 [ 3475.823407] ? debug_smp_processor_id+0x1c/0x20 [ 3475.823417] ? perf_trace_lock+0x109/0x500 [ 3475.823438] kvm_dev_ioctl+0x163/0x1620 [ 3475.823457] ? kvm_put_kvm+0xaa0/0xaa0 [ 3475.823475] ? kvm_put_kvm+0xaa0/0xaa0 [ 3475.823487] do_vfs_ioctl+0x7ae/0x1060 [ 3475.829992] Normal: [ 3475.835181] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3475.835192] ? lock_downgrade+0x740/0x740 [ 3475.835205] ? ioctl_preallocate+0x1c0/0x1c0 [ 3475.835218] ? __fget+0x237/0x370 [ 3475.835236] ? security_file_ioctl+0x89/0xb0 [ 3475.835252] SyS_ioctl+0x8f/0xc0 [ 3475.835262] ? do_vfs_ioctl+0x1060/0x1060 [ 3475.835277] do_syscall_64+0x1e8/0x640 [ 3475.835286] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3475.835313] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3475.835321] RIP: 0033:0x45a6f9 [ 3475.835326] RSP: 002b:00007f2bca431c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3475.835338] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3475.835343] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3475.835350] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 3475.835356] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4326d4 [ 3475.835361] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3475.880759] Node 0 [ 3475.928519] DMA free:10400kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3475.987224] lowmem_reserve[]: [ 3476.002376] 0*4kB [ 3476.012341] 0 [ 3476.076937] 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3476.088557] Node 1 Normal: 925*4kB (UME) 612*8kB (UME) 1944*16kB (UME) 1037*32kB (UMEH) 5*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 73204kB [ 3476.108798] 2569 2569 2569 2569 [ 3476.118221] Node 0 DMA32 free:39172kB min:36380kB low:45472kB high:54564kB active_anon:1991296kB inactive_anon:1328kB active_file:264kB inactive_file:92kB unevictable:0kB writepending:12kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28312kB bounce:0kB free_pcp:428kB local_pcp:192kB free_cma:0kB [ 3476.136152] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3476.149599] lowmem_reserve[]: 0 0 0 0 0 [ 3476.161270] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3476.205687] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3476.250298] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3476.279006] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3476.295709] 9242 total pagecache pages [ 3476.299713] 0 pages in swap cache [ 3476.304766] Swap cache stats: add 0, delete 0, find 0/0 [ 3476.315852] Free swap = 0kB [ 3476.319097] lowmem_reserve[]: 0 0 0 0 0 [ 3476.329010] Total swap = 0kB [ 3476.333348] Node 1 Normal free:74068kB min:53508kB low:66884kB high:80260kB active_anon:3378492kB inactive_anon:928kB active_file:3064kB inactive_file:1848kB unevictable:0kB writepending:184kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11104kB pagetables:37692kB bounce:0kB free_pcp:1352kB local_pcp:672kB free_cma:0kB [ 3476.365666] 1965979 pages RAM [ 3476.372152] 0 pages HighMem/MovableOnly [ 3476.378543] 335858 pages reserved [ 3476.384130] 0 pages cma reserved [ 3476.404588] lowmem_reserve[]: 0 0 0 0 0 [ 3476.409111] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 6*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10400kB [ 3476.425811] Node 0 DMA32: 1508*4kB (UME) 2157*8kB (UM) 935*16kB (UM) 25*32kB (UME) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39048kB [ 3476.446200] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 20:18:54 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$UI_SET_EVBIT(0xffffffffffffffff, 0x40045564, 0x1e) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) 20:18:54 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:54 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) [ 3476.453950] 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3476.473566] Node 1 Normal: 1101*4kB (UE) 475*8kB (UME) 1932*16kB (UME) 1043*32kB (UMEH) 5*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 72812kB [ 3476.503288] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3476.525012] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3476.536582] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3476.555995] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3476.565075] 9213 total pagecache pages [ 3476.569205] 0 pages in swap cache [ 3476.573155] Swap cache stats: add 0, delete 0, find 0/0 [ 3476.578672] Free swap = 0kB [ 3476.581970] Total swap = 0kB [ 3476.585566] 1965979 pages RAM [ 3476.588843] 0 pages HighMem/MovableOnly [ 3476.593333] 335858 pages reserved [ 3476.596948] 0 pages cma reserved [ 3476.688415] syz-executor.0: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3476.699644] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 3476.710412] CPU: 0 PID: 9504 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3476.718248] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3476.727607] Call Trace: [ 3476.730205] dump_stack+0x142/0x197 [ 3476.733838] warn_alloc.cold+0x96/0x1af [ 3476.737802] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3476.742639] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3476.747910] __alloc_pages_slowpath+0x23c6/0x2930 [ 3476.752753] ? save_trace+0x290/0x290 [ 3476.756562] ? warn_alloc+0xf0/0xf0 [ 3476.760190] ? __might_sleep+0x93/0xb0 [ 3476.764067] __alloc_pages_nodemask+0x62c/0x7a0 [ 3476.768731] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3476.773742] ? ____cache_alloc_node+0x1be/0x1d0 [ 3476.778499] ? cache_grow_begin+0x335/0x400 [ 3476.782814] cache_grow_begin+0x80/0x400 [ 3476.786884] ? __cpuset_node_allowed+0xff/0x450 [ 3476.791548] fallback_alloc+0x1fd/0x2c0 [ 3476.795520] ____cache_alloc_node+0x1be/0x1d0 [ 3476.800008] kmem_cache_alloc_trace+0x213/0x790 [ 3476.804674] ? debug_smp_processor_id+0x1c/0x20 [ 3476.809333] ? perf_trace_lock+0x109/0x500 [ 3476.813563] kvm_dev_ioctl+0x163/0x1620 [ 3476.817543] ? kvm_put_kvm+0xaa0/0xaa0 [ 3476.821421] ? kvm_put_kvm+0xaa0/0xaa0 [ 3476.825296] do_vfs_ioctl+0x7ae/0x1060 [ 3476.829171] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3476.833933] ? lock_downgrade+0x740/0x740 [ 3476.838068] ? ioctl_preallocate+0x1c0/0x1c0 [ 3476.842469] ? __fget+0x237/0x370 [ 3476.845917] ? security_file_ioctl+0x89/0xb0 [ 3476.850313] SyS_ioctl+0x8f/0xc0 [ 3476.853666] ? do_vfs_ioctl+0x1060/0x1060 [ 3476.857800] do_syscall_64+0x1e8/0x640 [ 3476.861672] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3476.866505] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3476.871679] RIP: 0033:0x45a6f9 [ 3476.874853] RSP: 002b:00007f063534ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3476.882559] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3476.889813] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3476.897066] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3476.904342] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063534b6d4 [ 3476.911616] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3476.940296] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3476.964469] warn_alloc_show_mem: 3 callbacks suppressed [ 3476.964473] Mem-Info: [ 3476.969522] 9pnet: Insufficient options for proto=fd [ 3476.972765] active_anon:1343568 inactive_anon:564 isolated_anon:0 [ 3476.972765] active_file:520 inactive_file:523 isolated_file:32 [ 3476.972765] unevictable:0 dirty:7 writeback:0 unstable:0 [ 3476.972765] slab_reclaimable:17018 slab_unreclaimable:114118 [ 3476.972765] mapped:53016 shmem:7461 pagetables:16501 bounce:0 [ 3476.972765] free:31479 free_pcp:152 free_cma:0 [ 3476.982046] syz-executor.4 cpuset= [ 3477.012437] Node 0 active_anon:1995772kB inactive_anon:1328kB active_file:20kB inactive_file:12kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208968kB dirty:12kB writeback:0kB shmem:11956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3477.017374] syz4 [ 3477.047176] Node 1 active_anon:3378408kB inactive_anon:928kB active_file:2104kB inactive_file:2116kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:2848kB dirty:28kB writeback:68kB shmem:17888kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3477.051822] mems_allowed=0-1 [ 3477.091825] CPU: 1 PID: 9499 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3477.099638] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3477.108987] Call Trace: [ 3477.111588] dump_stack+0x142/0x197 [ 3477.115235] warn_alloc.cold+0x96/0x1af [ 3477.119223] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3477.124071] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3477.129345] __alloc_pages_slowpath+0x23c6/0x2930 [ 3477.134189] ? save_trace+0x290/0x290 [ 3477.137998] ? warn_alloc+0xf0/0xf0 [ 3477.141625] ? __might_sleep+0x93/0xb0 [ 3477.145510] __alloc_pages_nodemask+0x62c/0x7a0 [ 3477.150173] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3477.155195] ? ____cache_alloc_node+0x1be/0x1d0 [ 3477.159854] ? cache_grow_begin+0x335/0x400 [ 3477.164184] cache_grow_begin+0x80/0x400 [ 3477.168240] ? __cpuset_node_allowed+0xff/0x450 [ 3477.172899] fallback_alloc+0x1fd/0x2c0 [ 3477.176891] ____cache_alloc_node+0x1be/0x1d0 [ 3477.181392] kmem_cache_alloc_trace+0x213/0x790 [ 3477.186060] ? debug_smp_processor_id+0x1c/0x20 [ 3477.190728] ? perf_trace_lock+0x109/0x500 [ 3477.194967] kvm_dev_ioctl+0x163/0x1620 [ 3477.198941] ? kvm_put_kvm+0xaa0/0xaa0 [ 3477.202825] ? kvm_put_kvm+0xaa0/0xaa0 [ 3477.206711] do_vfs_ioctl+0x7ae/0x1060 [ 3477.210589] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3477.215335] ? lock_downgrade+0x740/0x740 [ 3477.219472] ? ioctl_preallocate+0x1c0/0x1c0 [ 3477.223872] ? __fget+0x237/0x370 [ 3477.227323] ? security_file_ioctl+0x89/0xb0 [ 3477.231722] SyS_ioctl+0x8f/0xc0 [ 3477.235075] ? do_vfs_ioctl+0x1060/0x1060 [ 3477.239212] do_syscall_64+0x1e8/0x640 [ 3477.243084] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3477.247939] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3477.253117] RIP: 0033:0x45a6f9 [ 3477.256291] RSP: 002b:00007f2bca452c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3477.263986] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3477.271258] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3477.278513] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3477.285770] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4536d4 [ 3477.293023] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3477.300641] Node 0 DMA free:10400kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3477.330728] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3477.335938] Node 0 DMA32 free:39888kB min:36380kB low:45472kB high:54564kB active_anon:1991224kB inactive_anon:1328kB active_file:8kB inactive_file:8kB unevictable:0kB writepending:0kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28304kB bounce:0kB free_pcp:116kB local_pcp:12kB free_cma:0kB [ 3477.381430] 9pnet: Insufficient options for proto=fd [ 3477.419341] lowmem_reserve[]: 0 0 0 0 0 [ 3477.423601] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3477.449898] lowmem_reserve[]: 0 0 0 0 0 [ 3477.454273] Node 1 Normal free:74044kB min:53508kB low:66884kB high:80260kB active_anon:3378384kB inactive_anon:928kB active_file:2636kB inactive_file:2332kB unevictable:0kB writepending:4kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11296kB pagetables:37544kB bounce:0kB free_pcp:792kB local_pcp:300kB free_cma:0kB [ 3477.485354] lowmem_reserve[]: 0 0 0 0 0 [ 3477.489634] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 6*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10400kB [ 3477.527874] Node 0 DMA32: 1611*4kB (UM) 2175*8kB (UME) 933*16kB (UME) 31*32kB (UME) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39764kB [ 3477.552677] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3477.574195] Node 1 Normal: 1285*4kB (UME) 507*8kB (UME) 1920*16kB (UME) 1049*32kB (UMEH) 7*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 73932kB [ 3477.593434] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3477.606541] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3477.619429] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3477.640096] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3477.648696] 8439 total pagecache pages [ 3477.670331] 0 pages in swap cache [ 3477.674003] Swap cache stats: add 0, delete 0, find 0/0 [ 3477.679880] Free swap = 0kB [ 3477.689474] Total swap = 0kB [ 3477.693729] 1965979 pages RAM [ 3477.696935] 0 pages HighMem/MovableOnly [ 3477.707807] 335858 pages reserved [ 3477.711530] 0 pages cma reserved 20:18:58 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:58 executing program 2: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:58 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:18:58 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:58 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:18:59 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3480.831471] 9pnet: Insufficient options for proto=fd [ 3480.883005] 9pnet: Insufficient options for proto=fd 20:18:59 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3480.951838] syz-executor.5: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3480.975236] syz-executor.2: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3480.997471] syz-executor.5 cpuset=syz5 mems_allowed=0-1 [ 3481.019259] syz-executor.2 cpuset=syz2 mems_allowed=0-1 [ 3481.027431] CPU: 1 PID: 9521 Comm: syz-executor.5 Not tainted 4.14.158-syzkaller #0 [ 3481.035249] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3481.044631] Call Trace: [ 3481.047233] dump_stack+0x142/0x197 [ 3481.050877] warn_alloc.cold+0x96/0x1af [ 3481.054855] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3481.059721] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3481.065008] __alloc_pages_slowpath+0x23c6/0x2930 [ 3481.069871] ? save_trace+0x290/0x290 [ 3481.073687] ? warn_alloc+0xf0/0xf0 [ 3481.077344] ? __might_sleep+0x93/0xb0 [ 3481.081242] __alloc_pages_nodemask+0x62c/0x7a0 [ 3481.086058] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3481.091519] ? ____cache_alloc_node+0x1be/0x1d0 [ 3481.096198] ? cache_grow_begin+0x335/0x400 [ 3481.100529] cache_grow_begin+0x80/0x400 [ 3481.104600] ? __cpuset_node_allowed+0xff/0x450 [ 3481.109282] fallback_alloc+0x1fd/0x2c0 [ 3481.113278] ____cache_alloc_node+0x1be/0x1d0 [ 3481.117793] kmem_cache_alloc_trace+0x213/0x790 [ 3481.122469] ? debug_smp_processor_id+0x1c/0x20 [ 3481.127146] ? perf_trace_lock+0x109/0x500 [ 3481.131401] kvm_dev_ioctl+0x163/0x1620 [ 3481.135394] ? kvm_put_kvm+0xaa0/0xaa0 [ 3481.139299] ? kvm_put_kvm+0xaa0/0xaa0 [ 3481.143198] do_vfs_ioctl+0x7ae/0x1060 [ 3481.147098] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3481.151993] ? lock_downgrade+0x740/0x740 [ 3481.156184] ? ioctl_preallocate+0x1c0/0x1c0 [ 3481.158510] 9pnet: Insufficient options for proto=fd [ 3481.160599] ? __fget+0x237/0x370 [ 3481.160623] ? security_file_ioctl+0x89/0xb0 [ 3481.160639] SyS_ioctl+0x8f/0xc0 [ 3481.160650] ? do_vfs_ioctl+0x1060/0x1060 [ 3481.160666] do_syscall_64+0x1e8/0x640 [ 3481.160676] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3481.160700] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3481.160713] RIP: 0033:0x45a6f9 [ 3481.198209] RSP: 002b:00007f5026ac1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3481.205928] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3481.213198] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3481.220555] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3481.227825] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5026ac26d4 [ 3481.235089] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3481.269433] CPU: 0 PID: 9520 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3481.277284] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3481.286648] Call Trace: [ 3481.289247] dump_stack+0x142/0x197 [ 3481.292891] warn_alloc.cold+0x96/0x1af [ 3481.296887] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3481.301751] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3481.307039] __alloc_pages_slowpath+0x23c6/0x2930 [ 3481.311899] ? save_trace+0x290/0x290 [ 3481.315714] ? warn_alloc+0xf0/0xf0 [ 3481.319357] ? __might_sleep+0x93/0xb0 [ 3481.323264] __alloc_pages_nodemask+0x62c/0x7a0 [ 3481.327951] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3481.332975] ? ____cache_alloc_node+0x1be/0x1d0 [ 3481.337649] ? cache_grow_begin+0x335/0x400 [ 3481.341977] cache_grow_begin+0x80/0x400 [ 3481.346040] ? __cpuset_node_allowed+0xff/0x450 [ 3481.350705] fallback_alloc+0x1fd/0x2c0 [ 3481.354672] ____cache_alloc_node+0x1be/0x1d0 [ 3481.359170] kmem_cache_alloc_trace+0x213/0x790 [ 3481.363839] ? debug_smp_processor_id+0x1c/0x20 [ 3481.368499] ? perf_trace_lock+0x109/0x500 [ 3481.372735] kvm_dev_ioctl+0x163/0x1620 [ 3481.376710] ? kvm_put_kvm+0xaa0/0xaa0 [ 3481.380602] ? kvm_put_kvm+0xaa0/0xaa0 [ 3481.384485] do_vfs_ioctl+0x7ae/0x1060 [ 3481.388364] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3481.393108] ? lock_downgrade+0x740/0x740 [ 3481.397243] ? ioctl_preallocate+0x1c0/0x1c0 [ 3481.401641] ? __fget+0x237/0x370 [ 3481.405088] ? security_file_ioctl+0x89/0xb0 [ 3481.409487] SyS_ioctl+0x8f/0xc0 [ 3481.412841] ? do_vfs_ioctl+0x1060/0x1060 [ 3481.416975] do_syscall_64+0x1e8/0x640 [ 3481.420851] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3481.425685] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3481.430859] RIP: 0033:0x45a6f9 [ 3481.434033] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3481.441725] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3481.448979] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3481.456236] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3481.463492] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3481.470744] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3481.680188] syz-executor.0: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3481.697208] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3481.708016] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 3481.708046] CPU: 1 PID: 9519 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3481.708052] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3481.708057] Call Trace: [ 3481.708075] dump_stack+0x142/0x197 [ 3481.708092] warn_alloc.cold+0x96/0x1af [ 3481.708109] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3481.708142] ? __alloc_pages_direct_compact+0x290/0x380 [ 3481.708165] __alloc_pages_slowpath+0x23c6/0x2930 [ 3481.708191] ? save_trace+0x290/0x290 [ 3481.708209] ? warn_alloc+0xf0/0xf0 [ 3481.708241] ? __might_sleep+0x93/0xb0 [ 3481.708267] __alloc_pages_nodemask+0x62c/0x7a0 [ 3481.708285] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3481.708297] ? ____cache_alloc_node+0x1be/0x1d0 [ 3481.708308] ? cache_grow_begin+0x335/0x400 [ 3481.722870] syz-executor.4 cpuset= [ 3481.730818] cache_grow_begin+0x80/0x400 [ 3481.730835] ? __cpuset_node_allowed+0xff/0x450 [ 3481.730848] fallback_alloc+0x1fd/0x2c0 [ 3481.730865] ____cache_alloc_node+0x1be/0x1d0 [ 3481.730876] kmem_cache_alloc_trace+0x213/0x790 [ 3481.730885] ? debug_smp_processor_id+0x1c/0x20 [ 3481.730897] ? perf_trace_lock+0x109/0x500 [ 3481.730915] kvm_dev_ioctl+0x163/0x1620 [ 3481.730934] ? kvm_put_kvm+0xaa0/0xaa0 [ 3481.730950] ? kvm_put_kvm+0xaa0/0xaa0 [ 3481.730962] do_vfs_ioctl+0x7ae/0x1060 [ 3481.730974] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3481.730985] ? lock_downgrade+0x740/0x740 [ 3481.737044] syz4 [ 3481.737183] ? ioctl_preallocate+0x1c0/0x1c0 [ 3481.741622] mems_allowed=0-1 [ 3481.745981] ? __fget+0x237/0x370 [ 3481.746005] ? security_file_ioctl+0x89/0xb0 [ 3481.746025] SyS_ioctl+0x8f/0xc0 [ 3481.746035] ? do_vfs_ioctl+0x1060/0x1060 [ 3481.746050] do_syscall_64+0x1e8/0x640 [ 3481.746059] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3481.746079] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3481.746089] RIP: 0033:0x45a6f9 [ 3481.746095] RSP: 002b:00007f063534ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3481.746107] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3481.746117] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3481.848619] warn_alloc_show_mem: 1 callbacks suppressed [ 3481.848623] Mem-Info: [ 3481.851124] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3481.851130] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063534b6d4 [ 3481.851137] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3481.958996] CPU: 0 PID: 9531 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3481.966858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3481.976202] Call Trace: [ 3481.978782] dump_stack+0x142/0x197 [ 3481.982401] warn_alloc.cold+0x96/0x1af [ 3481.986361] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3481.991312] ? __alloc_pages_direct_compact+0x290/0x380 [ 3481.996677] __alloc_pages_slowpath+0x23c6/0x2930 [ 3482.001544] ? save_trace+0x290/0x290 [ 3482.005343] ? warn_alloc+0xf0/0xf0 [ 3482.008971] ? __might_sleep+0x93/0xb0 [ 3482.012851] __alloc_pages_nodemask+0x62c/0x7a0 [ 3482.017515] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3482.022523] ? ____cache_alloc_node+0x1be/0x1d0 [ 3482.027185] ? cache_grow_begin+0x335/0x400 [ 3482.031498] cache_grow_begin+0x80/0x400 [ 3482.035557] ? __cpuset_node_allowed+0xff/0x450 [ 3482.040212] fallback_alloc+0x1fd/0x2c0 [ 3482.044179] ____cache_alloc_node+0x1be/0x1d0 [ 3482.048662] kmem_cache_alloc_trace+0x213/0x790 [ 3482.053315] ? debug_smp_processor_id+0x1c/0x20 [ 3482.057972] ? perf_trace_lock+0x109/0x500 [ 3482.062197] kvm_dev_ioctl+0x163/0x1620 [ 3482.066167] ? kvm_put_kvm+0xaa0/0xaa0 [ 3482.070049] ? kvm_put_kvm+0xaa0/0xaa0 [ 3482.073939] do_vfs_ioctl+0x7ae/0x1060 [ 3482.077814] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3482.082554] ? lock_downgrade+0x740/0x740 [ 3482.086685] ? ioctl_preallocate+0x1c0/0x1c0 [ 3482.091079] ? __fget+0x237/0x370 [ 3482.094522] ? security_file_ioctl+0x89/0xb0 [ 3482.098918] SyS_ioctl+0x8f/0xc0 [ 3482.102273] ? do_vfs_ioctl+0x1060/0x1060 [ 3482.106412] do_syscall_64+0x1e8/0x640 [ 3482.110285] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3482.115121] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3482.120299] RIP: 0033:0x45a6f9 [ 3482.123478] RSP: 002b:00007f2bca452c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3482.131174] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3482.138428] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3482.145689] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3482.152945] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4536d4 [ 3482.160197] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3482.214764] active_anon:1343573 inactive_anon:563 isolated_anon:0 [ 3482.214764] active_file:590 inactive_file:978 isolated_file:32 [ 3482.214764] unevictable:0 dirty:11 writeback:25 unstable:0 [ 3482.214764] slab_reclaimable:17046 slab_unreclaimable:114150 [ 3482.214764] mapped:53201 shmem:7461 pagetables:16467 bounce:0 [ 3482.214764] free:30840 free_pcp:315 free_cma:0 [ 3482.257221] Node 0 active_anon:1995996kB inactive_anon:1328kB active_file:272kB inactive_file:1344kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:209752kB dirty:24kB writeback:0kB shmem:11956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3482.292637] Node 1 active_anon:3378296kB inactive_anon:924kB active_file:2160kB inactive_file:2332kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:2952kB dirty:20kB writeback:100kB shmem:17888kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3482.328435] Node 0 DMA free:10400kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3482.360630] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3482.374852] Node 0 DMA32 free:37696kB min:36380kB low:45472kB high:54564kB active_anon:1991448kB inactive_anon:1328kB active_file:272kB inactive_file:1344kB unevictable:0kB writepending:24kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28364kB bounce:0kB free_pcp:456kB local_pcp:8kB free_cma:0kB [ 3482.418906] lowmem_reserve[]: 0 0 0 0 0 [ 3482.423948] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3482.456732] lowmem_reserve[]: 0 0 0 0 0 [ 3482.460884] Node 1 Normal free:78924kB min:53508kB low:66884kB high:80260kB active_anon:3378468kB inactive_anon:924kB active_file:1216kB inactive_file:1420kB unevictable:0kB writepending:148kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11232kB pagetables:37508kB bounce:0kB free_pcp:820kB local_pcp:100kB free_cma:0kB [ 3482.499747] lowmem_reserve[]: 0 0 0 0 0 [ 3482.503915] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 6*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10400kB [ 3482.527037] Node 0 DMA32: 1366*4kB (UME) 2101*8kB (UME) 928*16kB (UME) 18*32kB (UME) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 37696kB [ 3482.548427] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3482.560394] Node 1 Normal: 1648*4kB (UME) 749*8kB (UME) 1926*16kB (UME) 1078*32kB (UMEH) 12*64kB (UMH) 1*128kB (H) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 78792kB [ 3482.575764] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3482.584853] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3482.593537] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3482.606139] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3482.614801] 8488 total pagecache pages [ 3482.619755] 0 pages in swap cache [ 3482.623266] Swap cache stats: add 0, delete 0, find 0/0 [ 3482.628629] Free swap = 0kB [ 3482.631799] Total swap = 0kB [ 3482.634914] 1965979 pages RAM [ 3482.638726] 0 pages HighMem/MovableOnly [ 3482.643981] 335858 pages reserved [ 3482.647461] 0 pages cma reserved 20:19:04 executing program 2: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:04 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:04 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:04 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:04 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r5, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB="2c6163636573733d06"]) 20:19:04 executing program 1: select(0x40, &(0x7f00000000c0)={0x4, 0x4, 0x9, 0x80000001, 0x100000000, 0x8, 0x5, 0x80000001}, &(0x7f0000000140)={0x7fffffff, 0x3, 0x7, 0xffffffff, 0x101, 0x0, 0xff, 0x100000000}, &(0x7f0000000180)={0x0, 0x7, 0x5645, 0xda37, 0x80000000, 0x3f1, 0x8, 0x4}, &(0x7f00000001c0)) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000200)='/dev/bsg\x00', 0x296440, 0x0) ioctl$KIOCSOUND(r1, 0x4b2f, 0x4) semget$private(0x0, 0x4, 0x190) semget$private(0x0, 0x0, 0x0) r2 = semget$private(0x0, 0x8, 0x0) semctl$GETZCNT(r2, 0x1, 0xf, &(0x7f0000000600)=""/4096) semctl$SEM_STAT(r2, 0x5275306eb72fa938, 0x12, &(0x7f0000000100)=""/50) ioctl$TIOCGPTLCK(r0, 0x80045439, &(0x7f0000000000)) 20:19:05 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:05 executing program 2: mkdir(0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3486.911053] syz-executor.5: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3486.924777] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3486.933754] syz-executor.5 cpuset=syz5 mems_allowed=0-1 [ 3486.945417] 9pnet: Insufficient options for proto=fd [ 3486.953938] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 3486.955742] CPU: 0 PID: 9547 Comm: syz-executor.5 Not tainted 4.14.158-syzkaller #0 [ 3486.967140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3486.976501] Call Trace: [ 3486.979097] dump_stack+0x142/0x197 [ 3486.982752] warn_alloc.cold+0x96/0x1af [ 3486.986744] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3486.991604] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3486.996887] __alloc_pages_slowpath+0x23c6/0x2930 [ 3487.001748] ? save_trace+0x290/0x290 [ 3487.005562] ? warn_alloc+0xf0/0xf0 [ 3487.009205] ? __might_sleep+0x93/0xb0 [ 3487.013108] __alloc_pages_nodemask+0x62c/0x7a0 [ 3487.013867] 9pnet: Insufficient options for proto=fd [ 3487.017779] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3487.017793] ? ____cache_alloc_node+0x1be/0x1d0 [ 3487.017806] ? cache_grow_begin+0x335/0x400 [ 3487.017820] cache_grow_begin+0x80/0x400 [ 3487.017838] ? __cpuset_node_allowed+0xff/0x450 [ 3487.045606] fallback_alloc+0x1fd/0x2c0 [ 3487.049599] ____cache_alloc_node+0x1be/0x1d0 [ 3487.054113] kmem_cache_alloc_trace+0x213/0x790 [ 3487.058791] ? debug_smp_processor_id+0x1c/0x20 [ 3487.063472] ? perf_trace_lock+0x109/0x500 [ 3487.067719] kvm_dev_ioctl+0x163/0x1620 [ 3487.071699] ? kvm_put_kvm+0xaa0/0xaa0 [ 3487.075594] ? kvm_put_kvm+0xaa0/0xaa0 [ 3487.079481] do_vfs_ioctl+0x7ae/0x1060 [ 3487.083372] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3487.088132] ? lock_downgrade+0x740/0x740 [ 3487.092288] ? ioctl_preallocate+0x1c0/0x1c0 [ 3487.096704] ? __fget+0x237/0x370 [ 3487.100168] ? security_file_ioctl+0x89/0xb0 [ 3487.104584] SyS_ioctl+0x8f/0xc0 [ 3487.107957] ? do_vfs_ioctl+0x1060/0x1060 [ 3487.112108] do_syscall_64+0x1e8/0x640 [ 3487.115992] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3487.120837] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3487.126022] RIP: 0033:0x45a6f9 [ 3487.129217] RSP: 002b:00007f5026ac1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3487.136933] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3487.144215] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3487.151493] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 20:19:05 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3487.158776] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5026ac26d4 [ 3487.166051] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3487.173334] CPU: 1 PID: 9552 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3487.181147] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3487.190506] Call Trace: [ 3487.193097] dump_stack+0x142/0x197 [ 3487.196727] warn_alloc.cold+0x96/0x1af [ 3487.200688] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3487.205533] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3487.210798] __alloc_pages_slowpath+0x23c6/0x2930 [ 3487.215633] ? save_trace+0x290/0x290 [ 3487.219431] ? warn_alloc+0xf0/0xf0 [ 3487.223050] ? __might_sleep+0x93/0xb0 [ 3487.226936] __alloc_pages_nodemask+0x62c/0x7a0 [ 3487.231592] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3487.236594] ? ____cache_alloc_node+0x1be/0x1d0 [ 3487.241249] ? cache_grow_begin+0x335/0x400 [ 3487.245556] cache_grow_begin+0x80/0x400 [ 3487.249600] ? __cpuset_node_allowed+0xff/0x450 [ 3487.255220] fallback_alloc+0x1fd/0x2c0 [ 3487.259184] ____cache_alloc_node+0x1be/0x1d0 [ 3487.263667] kmem_cache_alloc_trace+0x213/0x790 [ 3487.268322] ? debug_smp_processor_id+0x1c/0x20 [ 3487.272978] ? perf_trace_lock+0x109/0x500 [ 3487.277207] kvm_dev_ioctl+0x163/0x1620 [ 3487.281181] ? kvm_put_kvm+0xaa0/0xaa0 [ 3487.285060] ? kvm_put_kvm+0xaa0/0xaa0 [ 3487.288929] do_vfs_ioctl+0x7ae/0x1060 [ 3487.292802] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3487.297559] ? lock_downgrade+0x740/0x740 [ 3487.301705] ? ioctl_preallocate+0x1c0/0x1c0 [ 3487.306108] ? __fget+0x237/0x370 [ 3487.309582] ? security_file_ioctl+0x89/0xb0 [ 3487.313998] SyS_ioctl+0x8f/0xc0 [ 3487.317369] ? do_vfs_ioctl+0x1060/0x1060 [ 3487.321510] do_syscall_64+0x1e8/0x640 [ 3487.325390] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3487.330427] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3487.335613] RIP: 0033:0x45a6f9 [ 3487.338787] RSP: 002b:00007f2bca452c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3487.346497] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3487.353757] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3487.361012] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3487.368267] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4536d4 [ 3487.375524] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3487.413468] syz-executor.0: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3487.437524] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 3487.463958] CPU: 0 PID: 9553 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3487.471803] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3487.471809] Call Trace: [ 3487.471827] dump_stack+0x142/0x197 [ 3487.471847] warn_alloc.cold+0x96/0x1af [ 3487.471857] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3487.471878] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3487.471893] __alloc_pages_slowpath+0x23c6/0x2930 [ 3487.471918] ? save_trace+0x290/0x290 [ 3487.471934] ? warn_alloc+0xf0/0xf0 [ 3487.493064] warn_alloc_show_mem: 3 callbacks suppressed [ 3487.493068] Mem-Info: [ 3487.496281] ? __might_sleep+0x93/0xb0 [ 3487.496300] __alloc_pages_nodemask+0x62c/0x7a0 [ 3487.496314] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3487.496326] ? ____cache_alloc_node+0x1be/0x1d0 [ 3487.502157] active_anon:1343584 inactive_anon:564 isolated_anon:0 [ 3487.502157] active_file:1198 inactive_file:1050 isolated_file:32 [ 3487.502157] unevictable:0 dirty:89 writeback:0 unstable:0 [ 3487.502157] slab_reclaimable:17049 slab_unreclaimable:114002 [ 3487.502157] mapped:54152 shmem:7461 pagetables:16501 bounce:0 [ 3487.502157] free:29800 free_pcp:344 free_cma:0 [ 3487.506422] ? cache_grow_begin+0x335/0x400 [ 3487.506440] cache_grow_begin+0x80/0x400 [ 3487.506453] ? __cpuset_node_allowed+0xff/0x450 [ 3487.506467] fallback_alloc+0x1fd/0x2c0 [ 3487.510616] Node 0 active_anon:1996084kB inactive_anon:1332kB active_file:72kB inactive_file:104kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:209120kB dirty:112kB writeback:0kB shmem:11964kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3487.513870] ____cache_alloc_node+0x1be/0x1d0 [ 3487.513887] kmem_cache_alloc_trace+0x213/0x790 [ 3487.513897] ? debug_smp_processor_id+0x1c/0x20 [ 3487.513911] ? perf_trace_lock+0x109/0x500 [ 3487.513933] kvm_dev_ioctl+0x163/0x1620 [ 3487.519616] Node 1 active_anon:3378252kB inactive_anon:924kB active_file:4720kB inactive_file:4096kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:7488kB dirty:244kB writeback:0kB shmem:17880kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3487.521835] ? kvm_put_kvm+0xaa0/0xaa0 [ 3487.521853] ? kvm_put_kvm+0xaa0/0xaa0 [ 3487.521868] do_vfs_ioctl+0x7ae/0x1060 [ 3487.521883] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3487.521894] ? lock_downgrade+0x740/0x740 [ 3487.521905] ? ioctl_preallocate+0x1c0/0x1c0 [ 3487.521919] ? __fget+0x237/0x370 [ 3487.526129] Node 0 [ 3487.530464] ? security_file_ioctl+0x89/0xb0 [ 3487.530482] SyS_ioctl+0x8f/0xc0 [ 3487.530493] ? do_vfs_ioctl+0x1060/0x1060 [ 3487.530509] do_syscall_64+0x1e8/0x640 [ 3487.530519] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3487.530542] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3487.535755] DMA free:10400kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3487.540210] RIP: 0033:0x45a6f9 [ 3487.540217] RSP: 002b:00007f063534ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3487.540229] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3487.540235] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3487.540242] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3487.540248] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063534b6d4 [ 3487.540255] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3487.827110] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3487.832382] Node 0 DMA32 free:38752kB min:36380kB low:45472kB high:54564kB active_anon:1991440kB inactive_anon:1332kB active_file:56kB inactive_file:52kB unevictable:0kB writepending:48kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28328kB bounce:0kB free_pcp:760kB local_pcp:96kB free_cma:0kB [ 3487.861752] lowmem_reserve[]: 0 0 0 0 0 [ 3487.865765] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3487.891290] lowmem_reserve[]: 0 0 0 0 0 [ 3487.895315] Node 1 Normal free:68288kB min:53508kB low:66884kB high:80260kB active_anon:3378304kB inactive_anon:920kB active_file:5080kB inactive_file:4908kB unevictable:0kB writepending:240kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11264kB pagetables:37696kB bounce:0kB free_pcp:1240kB local_pcp:612kB free_cma:0kB 20:19:06 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:06 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r5, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB="2c6163636573733d06"]) [ 3487.925826] lowmem_reserve[]: 0 0 0 0 0 [ 3487.929954] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 6*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10400kB [ 3487.947723] Node 0 DMA32: 1560*4kB (UME) 2133*8kB (UME) 932*16kB (UME) 26*32kB (UME) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 39048kB [ 3487.962076] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3487.972874] Node 1 Normal: 585*4kB (UM) 406*8kB (UME) 1855*16kB (UE) 1049*32kB (UEH) 1*64kB (H) 1*128kB (H) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 69028kB [ 3487.991361] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3488.000658] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3488.009571] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3488.019169] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3488.027912] 9824 total pagecache pages [ 3488.032232] 0 pages in swap cache [ 3488.035798] Swap cache stats: add 0, delete 0, find 0/0 [ 3488.041980] Free swap = 0kB [ 3488.043088] syz-executor.2: [ 3488.045092] Total swap = 0kB [ 3488.048181] page allocation failure: order:5 [ 3488.051524] 1965979 pages RAM [ 3488.059135] 0 pages HighMem/MovableOnly [ 3488.059169] , mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask= [ 3488.063614] 335858 pages reserved [ 3488.074389] (null) [ 3488.075639] 0 pages cma reserved [ 3488.080993] syz-executor.2 cpuset=syz2 mems_allowed=0-1 [ 3488.101262] CPU: 0 PID: 9563 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3488.109079] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3488.118441] Call Trace: [ 3488.121045] dump_stack+0x142/0x197 [ 3488.124684] warn_alloc.cold+0x96/0x1af [ 3488.128685] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3488.133542] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3488.138825] __alloc_pages_slowpath+0x23c6/0x2930 [ 3488.143686] ? save_trace+0x290/0x290 [ 3488.147500] ? warn_alloc+0xf0/0xf0 [ 3488.151141] ? __might_sleep+0x93/0xb0 [ 3488.155044] __alloc_pages_nodemask+0x62c/0x7a0 [ 3488.159720] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3488.164739] ? ____cache_alloc_node+0x1be/0x1d0 [ 3488.169415] ? cache_grow_begin+0x335/0x400 [ 3488.173742] cache_grow_begin+0x80/0x400 [ 3488.177842] ? __cpuset_node_allowed+0xff/0x450 [ 3488.182514] fallback_alloc+0x1fd/0x2c0 [ 3488.186496] ____cache_alloc_node+0x1be/0x1d0 [ 3488.190997] kmem_cache_alloc_trace+0x213/0x790 [ 3488.195685] ? debug_smp_processor_id+0x1c/0x20 [ 3488.200363] ? perf_trace_lock+0x109/0x500 [ 3488.204615] kvm_dev_ioctl+0x163/0x1620 [ 3488.208608] ? kvm_put_kvm+0xaa0/0xaa0 [ 3488.212501] ? kvm_put_kvm+0xaa0/0xaa0 [ 3488.216379] do_vfs_ioctl+0x7ae/0x1060 [ 3488.220256] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3488.225000] ? lock_downgrade+0x740/0x740 [ 3488.229133] ? ioctl_preallocate+0x1c0/0x1c0 [ 3488.233547] ? __fget+0x237/0x370 [ 3488.236992] ? security_file_ioctl+0x89/0xb0 [ 3488.241408] SyS_ioctl+0x8f/0xc0 [ 3488.244766] ? do_vfs_ioctl+0x1060/0x1060 [ 3488.248933] do_syscall_64+0x1e8/0x640 [ 3488.252814] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3488.257653] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3488.262830] RIP: 0033:0x45a6f9 [ 3488.266003] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3488.273703] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3488.280955] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3488.288209] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3488.295463] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3488.302717] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3492.423468] syz-executor.0: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3492.429708] 9pnet: Insufficient options for proto=fd [ 3492.434398] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 3492.457413] CPU: 0 PID: 9575 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3492.458714] 9pnet: Insufficient options for proto=fd [ 3492.465234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3492.465240] Call Trace: [ 3492.465258] dump_stack+0x142/0x197 [ 3492.465278] warn_alloc.cold+0x96/0x1af [ 3492.465289] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3492.465313] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3492.500047] __alloc_pages_slowpath+0x23c6/0x2930 [ 3492.504886] ? save_trace+0x290/0x290 [ 3492.508678] ? warn_alloc+0xf0/0xf0 [ 3492.512302] ? __might_sleep+0x93/0xb0 [ 3492.516176] __alloc_pages_nodemask+0x62c/0x7a0 [ 3492.520834] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3492.525832] ? ____cache_alloc_node+0x1be/0x1d0 [ 3492.530493] ? cache_grow_begin+0x335/0x400 [ 3492.534803] cache_grow_begin+0x80/0x400 [ 3492.538846] ? __cpuset_node_allowed+0xff/0x450 [ 3492.543522] fallback_alloc+0x1fd/0x2c0 [ 3492.547484] ____cache_alloc_node+0x1be/0x1d0 [ 3492.551978] kmem_cache_alloc_trace+0x213/0x790 [ 3492.556632] ? debug_smp_processor_id+0x1c/0x20 [ 3492.561288] ? perf_trace_lock+0x109/0x500 [ 3492.565521] kvm_dev_ioctl+0x163/0x1620 [ 3492.569490] ? kvm_put_kvm+0xaa0/0xaa0 [ 3492.573372] ? kvm_put_kvm+0xaa0/0xaa0 [ 3492.577276] do_vfs_ioctl+0x7ae/0x1060 [ 3492.581160] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3492.585905] ? lock_downgrade+0x740/0x740 [ 3492.590046] ? ioctl_preallocate+0x1c0/0x1c0 [ 3492.594453] ? __fget+0x237/0x370 [ 3492.597904] ? security_file_ioctl+0x89/0xb0 [ 3492.602305] SyS_ioctl+0x8f/0xc0 [ 3492.605665] ? do_vfs_ioctl+0x1060/0x1060 [ 3492.609810] do_syscall_64+0x1e8/0x640 [ 3492.613686] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3492.618529] entry_SYSCALL_64_after_hwframe+0x42/0xb7 20:19:10 executing program 2: mkdir(0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:10 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:10 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:10 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3492.623727] RIP: 0033:0x45a6f9 [ 3492.626933] RSP: 002b:00007f063534ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3492.634636] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3492.641900] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3492.649171] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3492.656540] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063534b6d4 [ 3492.663806] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3492.743494] warn_alloc_show_mem: 3 callbacks suppressed [ 3492.743499] Mem-Info: [ 3492.752235] active_anon:1343561 inactive_anon:566 isolated_anon:0 [ 3492.752235] active_file:1512 inactive_file:1663 isolated_file:32 [ 3492.752235] unevictable:0 dirty:60 writeback:0 unstable:0 [ 3492.752235] slab_reclaimable:17090 slab_unreclaimable:113639 [ 3492.752235] mapped:54930 shmem:7461 pagetables:16505 bounce:0 [ 3492.752235] free:29094 free_pcp:518 free_cma:0 [ 3492.784992] syz-executor.2: [ 3492.787468] syz-executor.4: [ 3492.798903] page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3492.808791] page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3492.828123] 9pnet: Insufficient options for proto=fd [ 3492.838861] syz-executor.2 cpuset=syz2 mems_allowed=0-1 [ 3492.852272] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 3492.855128] Node 0 active_anon:1995872kB inactive_anon:1328kB active_file:4kB inactive_file:804kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:209452kB dirty:4kB writeback:0kB shmem:11956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3492.869237] CPU: 1 PID: 9581 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 20:19:11 executing program 5: socketpair$unix(0x1, 0x2, 0x0, 0x0) r0 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3492.889263] Node 1 active_anon:3378472kB inactive_anon:936kB active_file:6696kB inactive_file:4976kB unevictable:0kB isolated(anon):0kB isolated(file):36kB mapped:10168kB dirty:236kB writeback:0kB shmem:17888kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3492.893524] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3492.893529] Call Trace: [ 3492.893548] dump_stack+0x142/0x197 [ 3492.893566] warn_alloc.cold+0x96/0x1af [ 3492.893578] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3492.893602] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3492.893616] __alloc_pages_slowpath+0x23c6/0x2930 [ 3492.893639] ? save_trace+0x290/0x290 [ 3492.893654] ? warn_alloc+0xf0/0xf0 [ 3492.893680] ? __might_sleep+0x93/0xb0 [ 3492.893694] __alloc_pages_nodemask+0x62c/0x7a0 [ 3492.893709] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3492.893722] ? ____cache_alloc_node+0x1be/0x1d0 [ 3492.893733] ? cache_grow_begin+0x335/0x400 [ 3492.893749] cache_grow_begin+0x80/0x400 [ 3492.893761] ? __cpuset_node_allowed+0xff/0x450 [ 3492.893773] fallback_alloc+0x1fd/0x2c0 20:19:11 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:11 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)={0xfffffffc, 0x4}) r1 = openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/net/pfkey\x00', 0x185181, 0x0) bpf$MAP_DELETE_ELEM(0x3, &(0x7f0000000080)={r1, &(0x7f0000000580)="e9d89fd2ed7344a53eb0e0db1543da155400475bbbb2f401010000dae007276b45c4d34acee0b6b8e84abcb59719192d390c405ba789f82ce03f081d1736c360f06f2109be8e076d983267f98e856ea0e631809e9ae75bd8e3ac00ccf45593bd9b8f1dfc6747116044159801a2d1c3e29389d82911345922b7c3b1893fcdd869ff41545e9b9251ad3d3bab301b5fdccdcb69a260475a1c1423b75c28352cc8c46843d9f585f2d84d2c3f931bac91da5787aca9bfc6e4a13aa6198f50a43155428daf67395333f7a9c6b7220628f526d9e9b864b44dc9edf9e3bc8403c85752b783f14d1d8a3a8e931ace54c923d1865e751c0652acbf5be27cf51a1708f7a279ac30ec63f1b951ecb72f98cfb96cb26aa6d8a9585d7691c1ae3f17c3728fc0b13082803d0cd23ebedeec659bc7dd7d322947567a193c8ffc1a3a5cebcddcee3793227feb6f4124f9bc5d938bce2cabcbb4f41d27"}, 0xa) syz_open_dev$ttys(0xc, 0x2, 0x0) [ 3492.893789] ____cache_alloc_node+0x1be/0x1d0 [ 3492.893804] kmem_cache_alloc_trace+0x213/0x790 [ 3492.893815] ? debug_smp_processor_id+0x1c/0x20 [ 3492.893825] ? perf_trace_lock+0x109/0x500 [ 3492.893848] kvm_dev_ioctl+0x163/0x1620 [ 3492.893868] ? kvm_put_kvm+0xaa0/0xaa0 [ 3492.893886] ? kvm_put_kvm+0xaa0/0xaa0 [ 3492.893899] do_vfs_ioctl+0x7ae/0x1060 [ 3492.893914] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3492.923919] Node 0 [ 3492.931383] ? lock_downgrade+0x740/0x740 [ 3492.931402] ? ioctl_preallocate+0x1c0/0x1c0 [ 3492.931415] ? __fget+0x237/0x370 [ 3492.931436] ? security_file_ioctl+0x89/0xb0 [ 3492.931447] SyS_ioctl+0x8f/0xc0 [ 3492.931456] ? do_vfs_ioctl+0x1060/0x1060 [ 3492.931471] do_syscall_64+0x1e8/0x640 [ 3492.931479] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3492.931503] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3492.931512] RIP: 0033:0x45a6f9 [ 3492.931517] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3492.931527] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3492.931532] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3492.931537] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3492.931542] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3492.931548] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3493.134463] CPU: 0 PID: 9583 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3493.142292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3493.151656] Call Trace: [ 3493.154264] dump_stack+0x142/0x197 [ 3493.157922] warn_alloc.cold+0x96/0x1af [ 3493.161905] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3493.166768] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3493.172843] __alloc_pages_slowpath+0x23c6/0x2930 [ 3493.177705] ? save_trace+0x290/0x290 [ 3493.181517] ? warn_alloc+0xf0/0xf0 [ 3493.185160] ? __might_sleep+0x93/0xb0 [ 3493.189054] __alloc_pages_nodemask+0x62c/0x7a0 [ 3493.193737] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3493.198758] ? ____cache_alloc_node+0x1be/0x1d0 [ 3493.203434] ? cache_grow_begin+0x335/0x400 [ 3493.207775] cache_grow_begin+0x80/0x400 [ 3493.211848] ? __cpuset_node_allowed+0xff/0x450 [ 3493.216528] fallback_alloc+0x1fd/0x2c0 [ 3493.220508] ____cache_alloc_node+0x1be/0x1d0 [ 3493.224993] kmem_cache_alloc_trace+0x213/0x790 [ 3493.229647] ? debug_smp_processor_id+0x1c/0x20 [ 3493.234743] ? perf_trace_lock+0x109/0x500 [ 3493.238990] kvm_dev_ioctl+0x163/0x1620 [ 3493.242956] ? kvm_put_kvm+0xaa0/0xaa0 [ 3493.246836] ? kvm_put_kvm+0xaa0/0xaa0 [ 3493.250714] do_vfs_ioctl+0x7ae/0x1060 [ 3493.254592] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3493.259333] ? lock_downgrade+0x740/0x740 [ 3493.263470] ? ioctl_preallocate+0x1c0/0x1c0 [ 3493.267885] ? __fget+0x237/0x370 [ 3493.271331] ? security_file_ioctl+0x89/0xb0 [ 3493.275734] SyS_ioctl+0x8f/0xc0 [ 3493.279086] ? do_vfs_ioctl+0x1060/0x1060 [ 3493.283221] do_syscall_64+0x1e8/0x640 [ 3493.287094] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3493.291942] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3493.297142] RIP: 0033:0x45a6f9 [ 3493.300315] RSP: 002b:00007f2bca452c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3493.308010] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3493.315264] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3493.322531] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3493.329786] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4536d4 [ 3493.337040] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3493.361080] syz-executor.5: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3493.371521] DMA free:10400kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3493.422028] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3493.437273] Node 0 DMA32 free:40872kB min:36380kB low:45472kB high:54564kB active_anon:1988552kB inactive_anon:1332kB active_file:60kB inactive_file:852kB unevictable:0kB writepending:16kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28332kB bounce:0kB free_pcp:1072kB local_pcp:352kB free_cma:0kB [ 3493.446040] syz-executor.5 cpuset= [ 3493.522272] syz5 mems_allowed=0-1 [ 3493.527756] CPU: 1 PID: 9589 Comm: syz-executor.5 Not tainted 4.14.158-syzkaller #0 [ 3493.535585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3493.546683] Call Trace: [ 3493.549279] dump_stack+0x142/0x197 [ 3493.552943] warn_alloc.cold+0x96/0x1af [ 3493.556930] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3493.560155] lowmem_reserve[]: [ 3493.561786] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3493.561805] __alloc_pages_slowpath+0x23c6/0x2930 [ 3493.567995] 0 [ 3493.570184] ? save_trace+0x290/0x290 [ 3493.570201] ? warn_alloc+0xf0/0xf0 [ 3493.570224] ? __might_sleep+0x93/0xb0 [ 3493.570238] __alloc_pages_nodemask+0x62c/0x7a0 [ 3493.570255] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3493.575119] 0 [ 3493.576884] ? ____cache_alloc_node+0x1be/0x1d0 [ 3493.576896] ? cache_grow_begin+0x335/0x400 [ 3493.576911] cache_grow_begin+0x80/0x400 [ 3493.612670] ? __cpuset_node_allowed+0xff/0x450 [ 3493.617355] fallback_alloc+0x1fd/0x2c0 [ 3493.621340] ____cache_alloc_node+0x1be/0x1d0 [ 3493.622385] 0 [ 3493.625846] kmem_cache_alloc_trace+0x213/0x790 [ 3493.625857] ? debug_smp_processor_id+0x1c/0x20 [ 3493.625872] ? perf_trace_lock+0x109/0x500 [ 3493.630983] 0 [ 3493.632369] kvm_dev_ioctl+0x163/0x1620 [ 3493.632387] ? kvm_put_kvm+0xaa0/0xaa0 [ 3493.632406] ? kvm_put_kvm+0xaa0/0xaa0 [ 3493.632419] do_vfs_ioctl+0x7ae/0x1060 [ 3493.632433] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3493.632443] ? lock_downgrade+0x740/0x740 [ 3493.632455] ? ioctl_preallocate+0x1c0/0x1c0 [ 3493.642556] 0 [ 3493.643305] ? __fget+0x237/0x370 [ 3493.658901] ? security_file_ioctl+0x89/0xb0 [ 3493.658922] SyS_ioctl+0x8f/0xc0 [ 3493.672968] Node 0 [ 3493.673972] ? do_vfs_ioctl+0x1060/0x1060 [ 3493.683882] Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3493.685163] do_syscall_64+0x1e8/0x640 [ 3493.685174] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3493.697235] lowmem_reserve[]: [ 3493.716342] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3493.716354] RIP: 0033:0x45a6f9 [ 3493.716360] RSP: 002b:00007f5026ac1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3493.716370] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3493.716375] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 3493.716380] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3493.716385] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5026ac26d4 [ 3493.716390] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3493.765673] warn_alloc_show_mem: 2 callbacks suppressed [ 3493.765678] Mem-Info: [ 3493.813386] 0 0 0 0 0 [ 3493.816057] Node 1 Normal free:110720kB min:53508kB low:66884kB high:80260kB active_anon:3336724kB inactive_anon:920kB active_file:6872kB inactive_file:5380kB unevictable:0kB writepending:392kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11456kB pagetables:37792kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3493.834231] active_anon:1326764 inactive_anon:563 isolated_anon:24 [ 3493.834231] active_file:1707 inactive_file:1171 isolated_file:32 [ 3493.834231] unevictable:0 dirty:127 writeback:0 unstable:0 [ 3493.834231] slab_reclaimable:17091 slab_unreclaimable:114026 20:19:12 executing program 2: mkdir(0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3493.834231] mapped:54348 shmem:7461 pagetables:16531 bounce:0 [ 3493.834231] free:46444 free_pcp:105 free_cma:0 [ 3493.887575] Node 0 active_anon:1970300kB inactive_anon:1332kB active_file:104kB inactive_file:128kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208956kB dirty:16kB writeback:0kB shmem:11964kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3493.915930] lowmem_reserve[]: 0 0 0 0 0 20:19:12 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3493.915968] Node 0 DMA: 12*4kB [ 3493.928462] Node 1 active_anon:3336656kB inactive_anon:920kB active_file:6280kB inactive_file:4800kB unevictable:0kB isolated(anon):96kB isolated(file):148kB mapped:8336kB dirty:492kB writeback:0kB shmem:17880kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3493.945743] (UMEH) 20:19:12 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$DRM_IOCTL_GET_STATS(r2, 0x80f86406, &(0x7f0000000080)=""/80) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) [ 3493.976780] Node 0 DMA free:10400kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3494.047474] 12*8kB (UMH) 9*16kB (UMEH) 6*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10400kB [ 3494.078662] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3494.111996] Node 0 DMA32 free:62860kB min:36380kB low:45472kB high:54564kB active_anon:1965892kB inactive_anon:1344kB active_file:88kB inactive_file:180kB unevictable:0kB writepending:36kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28624kB bounce:0kB free_pcp:396kB local_pcp:228kB free_cma:0kB [ 3494.152923] 9pnet: Insufficient options for proto=fd [ 3494.160347] Node 0 DMA32: 4152*4kB (UME) 3002*8kB (UME) 1204*16kB (UME) 83*32kB (UME) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 62544kB [ 3494.188494] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3494.214596] Node 1 Normal: 3018*4kB (UME) 1679*8kB (UME) 2422*16kB (UME) 1362*32kB (UMEH) 61*64kB (UMH) 1*128kB (H) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 111872kB [ 3494.240882] lowmem_reserve[]: 0 0 0 0 0 [ 3494.249072] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3494.269058] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB 20:19:12 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3494.372309] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3494.379166] lowmem_reserve[]: 0 0 0 0 0 [ 3494.385882] Node 1 Normal free:113784kB min:53508kB low:66884kB high:80260kB active_anon:3336764kB inactive_anon:920kB active_file:5664kB inactive_file:4844kB unevictable:0kB writepending:516kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11264kB pagetables:37636kB bounce:0kB free_pcp:356kB local_pcp:52kB free_cma:0kB [ 3494.394157] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3494.423221] lowmem_reserve[]: 0 0 0 0 0 [ 3494.432523] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 6*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10400kB [ 3494.436492] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3494.449637] Node 0 DMA32: 4181*4kB (UME) 2770*8kB (UME) 1199*16kB (UME) 83*32kB (UME) 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 60724kB [ 3494.465619] 10158 total pagecache pages [ 3494.472118] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3494.472179] Node 1 Normal: 3018*4kB (UME) 1808*8kB (UME) 2440*16kB (UME) 1377*32kB (UMEH) 60*64kB (UMH) 2*128kB (UH) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 113736kB [ 3494.472264] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3494.472272] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3494.472279] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3494.472287] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3494.472291] 10158 total pagecache pages [ 3494.472303] 0 pages in swap cache [ 3494.472309] Swap cache stats: add 0, delete 0, find 0/0 [ 3494.472313] Free swap = 0kB [ 3494.472317] Total swap = 0kB [ 3494.472327] 1965979 pages RAM [ 3494.472331] 0 pages HighMem/MovableOnly [ 3494.472335] 335858 pages reserved [ 3494.472339] 0 pages cma reserved [ 3494.564677] 0 pages in swap cache [ 3494.574768] Swap cache stats: add 0, delete 0, find 0/0 [ 3494.580234] Free swap = 0kB [ 3494.583435] Total swap = 0kB [ 3494.590347] 1965979 pages RAM [ 3494.593568] 0 pages HighMem/MovableOnly [ 3494.597966] 335858 pages reserved [ 3494.601890] 0 pages cma reserved 20:19:13 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:13 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:13 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:13 executing program 5: mkdir(0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:13 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r5, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB="2c6163636573733d06"]) [ 3494.974918] 9pnet: Insufficient options for proto=fd [ 3494.994128] 9pnet: Insufficient options for proto=fd [ 3495.215876] 9pnet: Insufficient options for proto=fd [ 3495.287988] 9pnet: Insufficient options for proto=fd 20:19:13 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:13 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:13 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3495.511927] 9pnet: Insufficient options for proto=fd 20:19:14 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:14 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3495.908259] 9pnet: Insufficient options for proto=fd 20:19:14 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r5, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB="2c6163636573733d06"]) 20:19:14 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:14 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3495.988721] 9pnet: Insufficient options for proto=fd 20:19:14 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3496.155400] 9pnet: Insufficient options for proto=fd 20:19:14 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:14 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3496.331364] 9pnet: Insufficient options for proto=fd [ 3496.342406] 9pnet: Insufficient options for proto=fd [ 3496.356914] 9pnet: Insufficient options for proto=fd [ 3496.725844] 9pnet: Insufficient options for proto=fd 20:19:15 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:15 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:15 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3496.987686] 9pnet: Insufficient options for proto=fd [ 3497.056057] 9pnet: Insufficient options for proto=fd 20:19:15 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:15 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:15 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, 0x0) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3497.214259] 9pnet: Insufficient options for proto=fd [ 3497.258633] 9pnet: Insufficient options for proto=fd 20:19:16 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r5, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB="2c6163636573733d06"]) 20:19:16 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:16 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3497.895171] 9pnet: Insufficient options for proto=fd [ 3498.027317] 9pnet: Insufficient options for proto=fd 20:19:17 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:17 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:17 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r4, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r5, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX=r0, @ANYBLOB="2c6163636573733d06"]) 20:19:17 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) r1 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDGETLED(r1, 0x4b31, &(0x7f0000000000)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$VFIO_GET_API_VERSION(r3, 0x3b64) getsockname$netlink(r3, &(0x7f0000000080), &(0x7f00000000c0)=0xc) ioctl$UI_SET_FFBIT(r3, 0x4004556b, 0xd) 20:19:17 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:17 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3498.982765] 9pnet: Insufficient options for proto=fd 20:19:17 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3499.223048] 9pnet: Insufficient options for proto=fd [ 3499.235822] 9pnet: Insufficient options for proto=fd [ 3499.262543] 9pnet: Insufficient options for proto=fd [ 3499.324791] 9pnet: Insufficient options for proto=fd 20:19:17 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[]}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:17 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:17 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:19:17 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:17 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:17 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$KVM_CHECK_EXTENSION_VM(r1, 0xae03, 0x8001) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) [ 3499.557950] 9pnet: Insufficient options for proto=fd 20:19:18 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3499.631986] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3499.644503] 9pnet: Insufficient options for proto=fd [ 3499.652980] 9pnet: Insufficient options for proto=fd [ 3499.685589] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 3499.721955] CPU: 1 PID: 9760 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3499.729856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3499.729862] Call Trace: [ 3499.729879] dump_stack+0x142/0x197 [ 3499.729897] warn_alloc.cold+0x96/0x1af [ 3499.749426] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3499.754421] ? __alloc_pages_direct_compact+0x290/0x380 [ 3499.759806] __alloc_pages_slowpath+0x23c6/0x2930 [ 3499.764660] ? save_trace+0x290/0x290 [ 3499.768464] ? warn_alloc+0xf0/0xf0 [ 3499.768489] ? __might_sleep+0x93/0xb0 [ 3499.768501] __alloc_pages_nodemask+0x62c/0x7a0 [ 3499.768513] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3499.768525] ? ____cache_alloc_node+0x1be/0x1d0 [ 3499.768536] ? cache_grow_begin+0x335/0x400 [ 3499.768551] cache_grow_begin+0x80/0x400 [ 3499.768562] ? __cpuset_node_allowed+0xff/0x450 [ 3499.768573] fallback_alloc+0x1fd/0x2c0 [ 3499.768588] ____cache_alloc_node+0x1be/0x1d0 [ 3499.798772] kmem_cache_alloc_trace+0x213/0x790 [ 3499.798784] ? debug_smp_processor_id+0x1c/0x20 [ 3499.798799] ? perf_trace_lock+0x109/0x500 [ 3499.825472] kvm_dev_ioctl+0x163/0x1620 [ 3499.829470] ? kvm_put_kvm+0xaa0/0xaa0 [ 3499.833378] ? kvm_put_kvm+0xaa0/0xaa0 [ 3499.837280] do_vfs_ioctl+0x7ae/0x1060 [ 3499.841186] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3499.845952] ? lock_downgrade+0x740/0x740 [ 3499.850114] ? ioctl_preallocate+0x1c0/0x1c0 [ 3499.854535] ? __fget+0x237/0x370 [ 3499.858005] ? security_file_ioctl+0x89/0xb0 [ 3499.862444] SyS_ioctl+0x8f/0xc0 [ 3499.865821] ? do_vfs_ioctl+0x1060/0x1060 [ 3499.869980] do_syscall_64+0x1e8/0x640 [ 3499.873876] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3499.878731] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3499.883926] RIP: 0033:0x45a6f9 [ 3499.887118] RSP: 002b:00007f2bca452c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3499.894832] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3499.902123] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3499.909379] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3499.917836] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4536d4 [ 3499.925093] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3499.961145] Mem-Info: 20:19:18 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) [ 3499.973484] active_anon:1326909 inactive_anon:565 isolated_anon:35 [ 3499.973484] active_file:1314 inactive_file:1999 isolated_file:0 [ 3499.973484] unevictable:0 dirty:108 writeback:0 unstable:0 [ 3499.973484] slab_reclaimable:17322 slab_unreclaimable:118254 [ 3499.973484] mapped:54539 shmem:7461 pagetables:16518 bounce:0 [ 3499.973484] free:41206 free_pcp:261 free_cma:0 [ 3500.018319] 9pnet: Insufficient options for proto=fd 20:19:18 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:18 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3500.109608] Node 0 active_anon:1971416kB inactive_anon:1368kB active_file:1776kB inactive_file:8592kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:215424kB dirty:204kB writeback:0kB shmem:11996kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3500.234727] syz-executor.5: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3500.250354] 9pnet: Insufficient options for proto=fd [ 3500.256101] Node 1 active_anon:3336176kB inactive_anon:904kB active_file:3696kB inactive_file:264kB unevictable:0kB isolated(anon):76kB isolated(file):56kB mapped:3576kB dirty:284kB writeback:0kB shmem:17856kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3500.290823] syz-executor.5 cpuset=syz5 mems_allowed=0-1 [ 3500.296474] CPU: 1 PID: 9781 Comm: syz-executor.5 Not tainted 4.14.158-syzkaller #0 [ 3500.302701] 9pnet: Insufficient options for proto=fd [ 3500.304285] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3500.304292] Call Trace: [ 3500.304315] dump_stack+0x142/0x197 [ 3500.304338] warn_alloc.cold+0x96/0x1af [ 3500.304354] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3500.304382] ? __alloc_pages_direct_compact+0x290/0x380 [ 3500.304400] __alloc_pages_slowpath+0x23c6/0x2930 [ 3500.304423] ? save_trace+0x290/0x290 [ 3500.304442] ? warn_alloc+0xf0/0xf0 [ 3500.304466] ? __might_sleep+0x93/0xb0 [ 3500.304480] __alloc_pages_nodemask+0x62c/0x7a0 [ 3500.304502] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3500.304519] ? ____cache_alloc_node+0x1be/0x1d0 [ 3500.369728] ? cache_grow_begin+0x335/0x400 [ 3500.374068] cache_grow_begin+0x80/0x400 [ 3500.378129] ? __cpuset_node_allowed+0xff/0x450 [ 3500.382809] fallback_alloc+0x1fd/0x2c0 [ 3500.386796] ____cache_alloc_node+0x1be/0x1d0 [ 3500.391306] kmem_cache_alloc_trace+0x213/0x790 [ 3500.395978] ? debug_smp_processor_id+0x1c/0x20 [ 3500.400664] ? perf_trace_lock+0x109/0x500 [ 3500.404917] kvm_dev_ioctl+0x163/0x1620 [ 3500.408908] ? kvm_put_kvm+0xaa0/0xaa0 [ 3500.412811] ? kvm_put_kvm+0xaa0/0xaa0 [ 3500.416708] do_vfs_ioctl+0x7ae/0x1060 [ 3500.420605] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3500.425366] ? lock_downgrade+0x740/0x740 [ 3500.429699] ? ioctl_preallocate+0x1c0/0x1c0 [ 3500.434114] ? __fget+0x237/0x370 20:19:18 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r1, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3500.437585] ? security_file_ioctl+0x89/0xb0 [ 3500.442005] SyS_ioctl+0x8f/0xc0 [ 3500.445376] ? do_vfs_ioctl+0x1060/0x1060 [ 3500.449534] do_syscall_64+0x1e8/0x640 [ 3500.453427] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3500.458290] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3500.463482] RIP: 0033:0x45a6f9 [ 3500.466675] RSP: 002b:00007f5026ac1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3500.474382] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3500.474389] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3500.474395] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3500.474402] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5026ac26d4 [ 3500.474408] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3500.483228] Node 0 [ 3500.511732] DMA free:10400kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 20:19:18 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r1, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3500.551929] 9pnet: Insufficient options for proto=fd [ 3500.569340] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3500.574641] Node 0 DMA32 free:48264kB min:36380kB low:45472kB high:54564kB active_anon:1967268kB inactive_anon:1368kB active_file:1976kB inactive_file:9492kB unevictable:0kB writepending:56kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28820kB bounce:0kB free_pcp:484kB local_pcp:316kB free_cma:0kB [ 3500.622007] lowmem_reserve[]: 0 0 0 0 0 [ 3500.626323] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3500.675919] lowmem_reserve[]: 0 0 0 0 0 [ 3500.694040] Node 1 Normal free:104412kB min:53508kB low:66884kB high:80260kB active_anon:3336076kB inactive_anon:904kB active_file:2684kB inactive_file:768kB unevictable:0kB writepending:40kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11392kB pagetables:37328kB bounce:0kB free_pcp:60kB local_pcp:0kB free_cma:0kB [ 3500.736063] 9pnet: Insufficient options for proto=fd [ 3500.743305] lowmem_reserve[]: 0 0 0 0 0 [ 3500.748500] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 6*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10400kB [ 3500.765772] Node 0 DMA32: 2060*4kB (UE) 2148*8kB (UME) 1185*16kB (UM) 98*32kB (UME) 1*64kB (E) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 47584kB [ 3500.799828] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3500.830699] Node 1 Normal: 1471*4kB (UME) 1325*8kB (UME) 2397*16kB (UME) 1334*32kB (UEH) 89*64kB (UMH) 1*128kB (H) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 103348kB [ 3500.857984] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3500.880945] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3500.902175] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3500.911245] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3500.919985] 12056 total pagecache pages [ 3500.924403] 0 pages in swap cache [ 3500.928760] Swap cache stats: add 0, delete 0, find 0/0 [ 3500.934581] Free swap = 0kB [ 3500.937725] Total swap = 0kB [ 3500.941083] 1965979 pages RAM [ 3500.944291] 0 pages HighMem/MovableOnly [ 3500.948402] 335858 pages reserved [ 3500.952449] 0 pages cma reserved 20:19:19 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r1, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:19 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:19 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) [ 3501.311780] 9pnet: Insufficient options for proto=fd 20:19:19 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:19 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[]}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:19 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:19 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$KDSIGACCEPT(r2, 0x4b4e, 0x36) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm_plock\x00', 0x40000, 0x0) r6 = socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r6, 0x84, 0x1d, &(0x7f000025e000)=ANY=[@ANYBLOB="01006466", @ANYRES32=0x0], &(0x7f0000a8a000)=0x8) setsockopt$inet_sctp6_SCTP_MAXSEG(r5, 0x84, 0xd, &(0x7f00000002c0)=@assoc_id=r7, 0x4) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000540)={r7, @in6={{0xa, 0x0, 0x101, @mcast1, 0x7fffffff}}, 0x800, 0x8000, 0x6, 0x7fffffff, 0x4c}, &(0x7f0000000100)=0x98) setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r4, 0x84, 0x23, &(0x7f0000000000)={r7, 0x5}, 0x8) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r8) dup2(r8, r2) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) [ 3501.433756] 9pnet: Insufficient options for proto=fd 20:19:19 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) r3 = openat$selinux_mls(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/mls\x00', 0x0, 0x0) ioctl$TUNGETIFF(r3, 0x800454d2, &(0x7f00000000c0)) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$KDSETKEYCODE(r2, 0x4b4d, &(0x7f0000000080)={0x7, 0x6}) ioctl$TIOCNOTTY(r0, 0x5422) syz_genetlink_get_family_id$team(&(0x7f0000000000)='team\x00') [ 3501.543916] 9pnet: Insufficient options for proto=fd 20:19:19 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:20 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:20 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:20 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[]}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:20 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) [ 3501.801557] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3501.875137] syz-executor.2: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3501.894622] 9pnet: Insufficient options for proto=fd [ 3501.903340] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 3501.908944] syz-executor.3: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) 20:19:20 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) getsockopt$inet_IP_IPSEC_POLICY(r2, 0x0, 0x10, &(0x7f0000000080)={{{@in=@empty, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in6=@dev}, 0x0, @in6=@initdev}}, &(0x7f0000000000)=0xe8) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) getsockopt$inet_IP_XFRM_POLICY(r5, 0x0, 0x11, &(0x7f0000000180)={{{@in=@multicast1, @in6=@initdev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@initdev}, 0x0, @in6=@mcast2}}, &(0x7f0000000280)=0xe8) setreuid(r3, r6) [ 3501.928044] 9pnet: Insufficient options for proto=fd [ 3501.940981] syz-executor.0: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3501.941825] CPU: 0 PID: 9831 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3501.955492] syz-executor.2 cpuset= [ 3501.959480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3501.959486] Call Trace: [ 3501.959506] dump_stack+0x142/0x197 [ 3501.959524] warn_alloc.cold+0x96/0x1af [ 3501.959536] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3501.967781] syz-executor.3 cpuset= [ 3501.972426] ? __alloc_pages_direct_compact+0x290/0x380 [ 3501.972443] __alloc_pages_slowpath+0x23c6/0x2930 [ 3501.972463] ? save_trace+0x290/0x290 [ 3501.972480] ? warn_alloc+0xf0/0xf0 [ 3501.972503] ? __might_sleep+0x93/0xb0 [ 3501.972516] __alloc_pages_nodemask+0x62c/0x7a0 [ 3501.972529] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3501.972540] ? ____cache_alloc_node+0x1be/0x1d0 [ 3501.972552] ? cache_grow_begin+0x335/0x400 [ 3501.990277] syz2 [ 3501.991091] cache_grow_begin+0x80/0x400 [ 3502.004924] syz3 [ 3502.005050] ? __cpuset_node_allowed+0xff/0x450 [ 3502.010116] syz-executor.0 cpuset= [ 3502.012535] fallback_alloc+0x1fd/0x2c0 [ 3502.012555] ____cache_alloc_node+0x1be/0x1d0 [ 3502.012571] kmem_cache_alloc_trace+0x213/0x790 [ 3502.012582] ? debug_smp_processor_id+0x1c/0x20 [ 3502.012594] ? perf_trace_lock+0x109/0x500 [ 3502.012613] kvm_dev_ioctl+0x163/0x1620 [ 3502.023166] syz0 [ 3502.026929] ? kvm_put_kvm+0xaa0/0xaa0 [ 3502.033603] mems_allowed=0-1 [ 3502.037243] ? kvm_put_kvm+0xaa0/0xaa0 [ 3502.037259] do_vfs_ioctl+0x7ae/0x1060 [ 3502.037275] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3502.037288] ? lock_downgrade+0x740/0x740 [ 3502.039426] mems_allowed=0-1 [ 3502.043907] ? ioctl_preallocate+0x1c0/0x1c0 [ 3502.043922] ? __fget+0x237/0x370 [ 3502.043944] ? security_file_ioctl+0x89/0xb0 [ 3502.043959] SyS_ioctl+0x8f/0xc0 [ 3502.043970] ? do_vfs_ioctl+0x1060/0x1060 [ 3502.043986] do_syscall_64+0x1e8/0x640 [ 3502.043997] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3502.044019] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3502.044027] RIP: 0033:0x45a6f9 [ 3502.044033] RSP: 002b:00007f2bca452c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3502.044044] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3502.044049] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3502.044054] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3502.044059] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4536d4 [ 3502.044067] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3502.074740] mems_allowed=0-1 [ 3502.122987] CPU: 1 PID: 9840 Comm: syz-executor.3 Not tainted 4.14.158-syzkaller #0 [ 3502.139519] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3502.139524] Call Trace: [ 3502.139540] dump_stack+0x142/0x197 [ 3502.139558] warn_alloc.cold+0x96/0x1af [ 3502.139568] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3502.219147] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3502.224415] __alloc_pages_slowpath+0x23c6/0x2930 [ 3502.229248] ? save_trace+0x290/0x290 [ 3502.233048] ? warn_alloc+0xf0/0xf0 [ 3502.236669] ? __might_sleep+0x93/0xb0 [ 3502.240549] __alloc_pages_nodemask+0x62c/0x7a0 [ 3502.245241] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3502.250264] ? ____cache_alloc_node+0x1be/0x1d0 [ 3502.254945] ? cache_grow_begin+0x335/0x400 [ 3502.259284] cache_grow_begin+0x80/0x400 [ 3502.263353] ? __cpuset_node_allowed+0xff/0x450 [ 3502.268037] fallback_alloc+0x1fd/0x2c0 [ 3502.272010] ____cache_alloc_node+0x1be/0x1d0 [ 3502.276513] kmem_cache_alloc_trace+0x213/0x790 [ 3502.281186] ? debug_smp_processor_id+0x1c/0x20 [ 3502.285853] ? perf_trace_lock+0x109/0x500 [ 3502.290093] kvm_dev_ioctl+0x163/0x1620 [ 3502.294095] ? kvm_put_kvm+0xaa0/0xaa0 [ 3502.297991] ? kvm_put_kvm+0xaa0/0xaa0 [ 3502.301878] do_vfs_ioctl+0x7ae/0x1060 [ 3502.305762] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3502.310507] ? lock_downgrade+0x740/0x740 [ 3502.314650] ? ioctl_preallocate+0x1c0/0x1c0 [ 3502.319044] ? __fget+0x237/0x370 [ 3502.322488] ? security_file_ioctl+0x89/0xb0 [ 3502.326884] SyS_ioctl+0x8f/0xc0 [ 3502.330235] ? do_vfs_ioctl+0x1060/0x1060 [ 3502.334371] do_syscall_64+0x1e8/0x640 [ 3502.338251] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3502.343088] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3502.348423] RIP: 0033:0x45a6f9 [ 3502.351608] RSP: 002b:00007ff826292c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3502.359305] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3502.366562] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3502.373974] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3502.381265] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff8262936d4 [ 3502.388622] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3502.398182] warn_alloc_show_mem: 1 callbacks suppressed [ 3502.398186] Mem-Info: [ 3502.407108] active_anon:1327164 inactive_anon:568 isolated_anon:0 [ 3502.407108] active_file:1292 inactive_file:4344 isolated_file:32 [ 3502.407108] unevictable:0 dirty:132 writeback:0 unstable:0 [ 3502.407108] slab_reclaimable:17265 slab_unreclaimable:118227 [ 3502.407108] mapped:56944 shmem:7463 pagetables:16537 bounce:0 [ 3502.407108] free:38460 free_pcp:295 free_cma:0 [ 3502.416980] CPU: 1 PID: 9837 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3502.448897] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3502.458264] Call Trace: [ 3502.460874] dump_stack+0x142/0x197 [ 3502.464522] warn_alloc.cold+0x96/0x1af [ 3502.468502] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3502.473372] ? __alloc_pages_direct_compact+0x290/0x380 [ 3502.478789] __alloc_pages_slowpath+0x23c6/0x2930 [ 3502.483660] ? save_trace+0x290/0x290 [ 3502.487482] ? warn_alloc+0xf0/0xf0 [ 3502.491147] ? __might_sleep+0x93/0xb0 [ 3502.492939] Node 0 active_anon:1971328kB inactive_anon:1348kB active_file:2224kB inactive_file:14368kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222116kB dirty:356kB writeback:0kB shmem:11976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3502.495039] __alloc_pages_nodemask+0x62c/0x7a0 [ 3502.495059] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3502.495072] ? ____cache_alloc_node+0x1be/0x1d0 [ 3502.495086] ? cache_grow_begin+0x335/0x400 [ 3502.495102] cache_grow_begin+0x80/0x400 [ 3502.495115] ? __cpuset_node_allowed+0xff/0x450 [ 3502.495129] fallback_alloc+0x1fd/0x2c0 [ 3502.495146] ____cache_alloc_node+0x1be/0x1d0 [ 3502.524378] Node 1 active_anon:3337328kB inactive_anon:924kB active_file:3036kB inactive_file:2856kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:5560kB dirty:172kB writeback:0kB shmem:17876kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3502.528293] kmem_cache_alloc_trace+0x213/0x790 [ 3502.528304] ? debug_smp_processor_id+0x1c/0x20 [ 3502.528319] ? perf_trace_lock+0x109/0x500 [ 3502.528343] kvm_dev_ioctl+0x163/0x1620 [ 3502.528369] ? kvm_put_kvm+0xaa0/0xaa0 [ 3502.528388] ? kvm_put_kvm+0xaa0/0xaa0 [ 3502.528399] do_vfs_ioctl+0x7ae/0x1060 [ 3502.528412] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3502.621557] ? lock_downgrade+0x740/0x740 [ 3502.625704] ? ioctl_preallocate+0x1c0/0x1c0 [ 3502.630123] ? __fget+0x237/0x370 [ 3502.633570] ? security_file_ioctl+0x89/0xb0 [ 3502.637975] SyS_ioctl+0x8f/0xc0 [ 3502.641328] ? do_vfs_ioctl+0x1060/0x1060 [ 3502.645465] do_syscall_64+0x1e8/0x640 [ 3502.649338] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3502.654192] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3502.659370] RIP: 0033:0x45a6f9 [ 3502.662563] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3502.670432] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3502.677704] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3502.684960] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3502.692214] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3502.699487] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff 20:19:21 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$KDFONTOP_SET(r2, 0x4b72, &(0x7f0000000000)={0x0, 0x1, 0x12, 0xa, 0x1be, &(0x7f0000000080)="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"}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_RESUME(r4, 0x4147, 0x0) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) [ 3502.728473] Node 0 DMA free:10400kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3502.775772] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3502.781217] Node 0 DMA32 free:45460kB min:36380kB low:45472kB high:54564kB active_anon:1966780kB inactive_anon:1348kB active_file:2224kB inactive_file:14368kB unevictable:0kB writepending:356kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28552kB bounce:0kB free_pcp:496kB local_pcp:280kB free_cma:0kB [ 3502.832841] lowmem_reserve[]: 0 0 0 0 0 [ 3502.843156] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3502.870463] lowmem_reserve[]: 0 0 0 0 0 20:19:21 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = syz_init_net_socket$rose(0xb, 0x5, 0x0) getsockopt$rose(r1, 0x104, 0x3, 0x0, &(0x7f0000000180)=0xfffffffffffffed5) getsockopt$rose(r1, 0x104, 0x4, &(0x7f0000000000), &(0x7f0000000080)=0x4) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) [ 3502.881198] Node 1 Normal free:97776kB min:53508kB low:66884kB high:80260kB active_anon:3337544kB inactive_anon:924kB active_file:3492kB inactive_file:2424kB unevictable:0kB writepending:172kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11360kB pagetables:37500kB bounce:0kB free_pcp:732kB local_pcp:620kB free_cma:0kB [ 3502.908590] CPU: 1 PID: 9841 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3502.918716] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3502.926619] lowmem_reserve[]: [ 3502.928074] Call Trace: [ 3502.928094] dump_stack+0x142/0x197 [ 3502.928114] warn_alloc.cold+0x96/0x1af [ 3502.931279] 0 [ 3502.933776] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3502.933803] ? __alloc_pages_direct_compact+0x290/0x380 [ 3502.937471] 0 [ 3502.941387] __alloc_pages_slowpath+0x23c6/0x2930 [ 3502.941412] ? save_trace+0x290/0x290 [ 3502.941431] ? warn_alloc+0xf0/0xf0 [ 3502.941456] ? __might_sleep+0x93/0xb0 [ 3502.943830] 0 [ 3502.948104] __alloc_pages_nodemask+0x62c/0x7a0 [ 3502.948121] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3502.948136] ? ____cache_alloc_node+0x1be/0x1d0 [ 3502.953564] 0 [ 3502.955267] ? cache_grow_begin+0x335/0x400 [ 3502.955284] cache_grow_begin+0x80/0x400 [ 3502.955296] ? __cpuset_node_allowed+0xff/0x450 [ 3502.960571] 0 [ 3502.963908] fallback_alloc+0x1fd/0x2c0 [ 3502.963926] ____cache_alloc_node+0x1be/0x1d0 [ 3502.963941] kmem_cache_alloc_trace+0x213/0x790 [ 3502.971435] ? debug_smp_processor_id+0x1c/0x20 [ 3502.971447] ? perf_trace_lock+0x109/0x500 [ 3502.971471] kvm_dev_ioctl+0x163/0x1620 [ 3502.971491] ? kvm_put_kvm+0xaa0/0xaa0 [ 3502.973575] Node 0 [ 3502.977936] ? kvm_put_kvm+0xaa0/0xaa0 [ 3502.977950] do_vfs_ioctl+0x7ae/0x1060 [ 3502.977964] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3503.048573] ? lock_downgrade+0x740/0x740 [ 3503.052726] ? ioctl_preallocate+0x1c0/0x1c0 [ 3503.057123] ? __fget+0x237/0x370 [ 3503.060571] ? security_file_ioctl+0x89/0xb0 [ 3503.064971] SyS_ioctl+0x8f/0xc0 [ 3503.068323] ? do_vfs_ioctl+0x1060/0x1060 [ 3503.072463] do_syscall_64+0x1e8/0x640 [ 3503.076337] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3503.081172] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3503.086348] RIP: 0033:0x45a6f9 [ 3503.089520] RSP: 002b:00007f063534ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3503.097220] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3503.104472] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3503.111726] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3503.118979] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063534b6d4 [ 3503.126244] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3503.134454] DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 6*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10400kB [ 3503.151129] Node 0 DMA32: 2359*4kB (UE) 1739*8kB (UME) 1176*16kB (UM) 101*32kB (UME) 2*64kB (UE) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 45524kB [ 3503.169081] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3503.185432] Node 1 Normal: 1391*4kB (UME) 899*8kB (UME) 2358*16kB (UME) 1326*32kB (UMEH) 82*64kB (UMH) 1*128kB (H) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 98292kB [ 3503.201447] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3503.211325] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3503.221063] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB 20:19:21 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = openat$bsg(0xffffffffffffff9c, &(0x7f0000000000)='/dev/bsg\x00', 0x2000, 0x0) getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r1, 0x84, 0x1e, &(0x7f0000000080), &(0x7f00000000c0)=0x4) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) mlockall(0x5) ioctl$LOOP_SET_CAPACITY(0xffffffffffffffff, 0x4c07) [ 3503.231637] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3503.240564] 13106 total pagecache pages [ 3503.254870] 0 pages in swap cache [ 3503.262870] Swap cache stats: add 0, delete 0, find 0/0 20:19:21 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3503.286250] Free swap = 0kB [ 3503.294265] Total swap = 0kB [ 3503.301073] 1965979 pages RAM [ 3503.307964] 0 pages HighMem/MovableOnly [ 3503.318087] 335858 pages reserved [ 3503.325440] 0 pages cma reserved 20:19:21 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:21 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 20:19:21 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:22 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3503.823617] syz-executor.3: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3503.824705] syz-executor.5: [ 3503.870230] page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3503.891973] syz-executor.3 cpuset=syz3 mems_allowed=0-1 [ 3503.916893] CPU: 0 PID: 9882 Comm: syz-executor.3 Not tainted 4.14.158-syzkaller #0 [ 3503.919687] syz-executor.5 cpuset= [ 3503.924736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3503.924743] Call Trace: [ 3503.924765] dump_stack+0x142/0x197 [ 3503.924795] warn_alloc.cold+0x96/0x1af [ 3503.924809] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3503.924838] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3503.924856] __alloc_pages_slowpath+0x23c6/0x2930 [ 3503.924878] ? save_trace+0x290/0x290 [ 3503.924900] ? warn_alloc+0xf0/0xf0 [ 3503.924927] ? __might_sleep+0x93/0xb0 [ 3503.924942] __alloc_pages_nodemask+0x62c/0x7a0 [ 3503.941454] syz5 [ 3503.944037] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3503.963443] mems_allowed=0-1 [ 3503.966721] cache_grow_begin+0x80/0x400 [ 3503.966739] ? __cpuset_node_allowed+0xff/0x450 [ 3503.966753] fallback_alloc+0x1fd/0x2c0 [ 3504.001672] ____cache_alloc_node+0x1be/0x1d0 [ 3504.006183] kmem_cache_alloc_trace+0x213/0x790 [ 3504.010864] ? debug_smp_processor_id+0x1c/0x20 [ 3504.015541] ? perf_trace_lock+0x109/0x500 [ 3504.019798] kvm_dev_ioctl+0x163/0x1620 [ 3504.023785] ? kvm_put_kvm+0xaa0/0xaa0 [ 3504.027686] ? kvm_put_kvm+0xaa0/0xaa0 [ 3504.031583] do_vfs_ioctl+0x7ae/0x1060 [ 3504.035481] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3504.040252] ? lock_downgrade+0x740/0x740 [ 3504.044407] ? ioctl_preallocate+0x1c0/0x1c0 [ 3504.048824] ? __fget+0x237/0x370 [ 3504.052297] ? security_file_ioctl+0x89/0xb0 [ 3504.056716] SyS_ioctl+0x8f/0xc0 [ 3504.060085] ? do_vfs_ioctl+0x1060/0x1060 [ 3504.064241] do_syscall_64+0x1e8/0x640 [ 3504.068138] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3504.073000] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3504.078192] RIP: 0033:0x45a6f9 [ 3504.081386] RSP: 002b:00007ff826292c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3504.089098] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3504.096374] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3504.103646] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3504.110923] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff8262936d4 [ 3504.118186] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3504.130103] warn_alloc_show_mem: 1 callbacks suppressed [ 3504.130119] Mem-Info: [ 3504.136762] CPU: 1 PID: 9870 Comm: syz-executor.5 Not tainted 4.14.158-syzkaller #0 [ 3504.145344] active_anon:1327215 inactive_anon:591 isolated_anon:0 [ 3504.145344] active_file:1385 inactive_file:3820 isolated_file:0 [ 3504.145344] unevictable:21 dirty:32 writeback:0 unstable:0 [ 3504.145344] slab_reclaimable:17214 slab_unreclaimable:118364 [ 3504.145344] mapped:56522 shmem:7461 pagetables:16537 bounce:0 [ 3504.145344] free:39128 free_pcp:147 free_cma:0 [ 3504.145747] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3504.185045] Node 0 active_anon:1971468kB inactive_anon:1348kB active_file:2296kB inactive_file:14452kB unevictable:84kB isolated(anon):0kB isolated(file):0kB mapped:222260kB dirty:56kB writeback:0kB shmem:11976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3504.188926] Call Trace: [ 3504.188950] dump_stack+0x142/0x197 [ 3504.188969] warn_alloc.cold+0x96/0x1af [ 3504.217584] Node 1 active_anon:3337392kB inactive_anon:916kB active_file:3244kB inactive_file:828kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:3828kB dirty:72kB writeback:0kB shmem:17868kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3504.219990] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3504.220014] ? __alloc_pages_direct_compact+0x290/0x380 [ 3504.223675] Node 0 [ 3504.227585] __alloc_pages_slowpath+0x23c6/0x2930 [ 3504.227609] ? save_trace+0x290/0x290 [ 3504.255488] DMA free:10400kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3504.260207] ? warn_alloc+0xf0/0xf0 [ 3504.260235] ? __might_sleep+0x93/0xb0 [ 3504.265623] lowmem_reserve[]: [ 3504.267821] __alloc_pages_nodemask+0x62c/0x7a0 [ 3504.267837] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3504.272712] 0 [ 3504.276440] ? ____cache_alloc_node+0x1be/0x1d0 [ 3504.276453] ? cache_grow_begin+0x335/0x400 [ 3504.276468] cache_grow_begin+0x80/0x400 [ 3504.302414] 2569 [ 3504.305911] ? __cpuset_node_allowed+0xff/0x450 [ 3504.305931] fallback_alloc+0x1fd/0x2c0 [ 3504.309890] 2569 [ 3504.312925] ____cache_alloc_node+0x1be/0x1d0 [ 3504.312939] kmem_cache_alloc_trace+0x213/0x790 [ 3504.312949] ? debug_smp_processor_id+0x1c/0x20 [ 3504.312962] ? perf_trace_lock+0x109/0x500 [ 3504.312983] kvm_dev_ioctl+0x163/0x1620 [ 3504.317695] 2569 [ 3504.322645] ? kvm_put_kvm+0xaa0/0xaa0 [ 3504.322663] ? kvm_put_kvm+0xaa0/0xaa0 [ 3504.322678] do_vfs_ioctl+0x7ae/0x1060 [ 3504.324507] 2569 [ 3504.329120] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3504.329129] ? lock_downgrade+0x740/0x740 [ 3504.329141] ? ioctl_preallocate+0x1c0/0x1c0 [ 3504.337492] ? __fget+0x237/0x370 [ 3504.337512] ? security_file_ioctl+0x89/0xb0 [ 3504.339585] Node 0 [ 3504.344206] SyS_ioctl+0x8f/0xc0 [ 3504.344217] ? do_vfs_ioctl+0x1060/0x1060 [ 3504.344231] do_syscall_64+0x1e8/0x640 [ 3504.344242] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3504.348694] DMA32 free:45796kB min:36380kB low:45472kB high:54564kB active_anon:1966920kB inactive_anon:1348kB active_file:2296kB inactive_file:14452kB unevictable:84kB writepending:56kB present:3129332kB managed:2634384kB mlocked:84kB kernel_stack:12160kB pagetables:28592kB bounce:0kB free_pcp:580kB local_pcp:276kB free_cma:0kB [ 3504.350705] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3504.350715] RIP: 0033:0x45a6f9 20:19:22 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:22 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3504.350723] RSP: 002b:00007f5026ac1c78 EFLAGS: 00000246 [ 3504.355240] lowmem_reserve[]: [ 3504.359846] ORIG_RAX: 0000000000000010 [ 3504.359853] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3504.359859] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3504.359865] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3504.359873] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5026ac26d4 [ 3504.364601] 0 [ 3504.368750] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3504.527449] 0 0 0 0 [ 3504.530214] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3504.662502] lowmem_reserve[]: 0 0 0 0 0 [ 3504.677437] Node 1 Normal free:98524kB min:53508kB low:66884kB high:80260kB active_anon:3337492kB inactive_anon:916kB active_file:3344kB inactive_file:1028kB unevictable:0kB writepending:72kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11360kB pagetables:37556kB bounce:0kB free_pcp:980kB local_pcp:368kB free_cma:0kB [ 3504.728418] 9pnet: Insufficient options for proto=fd [ 3504.774581] lowmem_reserve[]: 0 0 0 0 0 [ 3504.794081] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 6*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10400kB [ 3504.835055] Node 0 DMA32: 2434*4kB (UME) 1755*8kB (UE) 1132*16kB (UM) 103*32kB (UME) 4*64kB (UME) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 45440kB [ 3504.849636] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3504.871795] Node 1 Normal: 1318*4kB (UE) 604*8kB (UME) 2350*16kB (UME) 1381*32kB (UMEH) 108*64kB (UMH) 1*128kB (H) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 98936kB [ 3504.903838] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3504.922685] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 20:19:23 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:19:23 executing program 1: syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00') socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$USBDEVFS_REAPURB(r1, 0x4008550c, &(0x7f0000000000)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$nl_generic(0x10, 0x3, 0x10) r5 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000040)='TIPCv2\x00') sendmsg$TIPC_NL_LINK_RESET_STATS(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)={0x24, r5, 0x5, 0x0, 0x0, {0x8}, [@TIPC_NLA_LINK={0x10, 0x4, [@TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}]}]}, 0x24}}, 0x0) sendmsg$TIPC_NL_NET_SET(r3, &(0x7f0000000300)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000280)={0x68, r5, 0x20, 0x70bd29, 0x25dfdbfc, {}, [@TIPC_NLA_LINK={0x54, 0x4, [@TIPC_NLA_LINK_PROP={0x1c, 0x7, [@TIPC_NLA_PROP_TOL={0x8, 0x2, 0x4}, @TIPC_NLA_PROP_PRIO={0x8, 0x1, 0x12}, @TIPC_NLA_PROP_TOL={0xe8, 0x2, 0x4}]}, @TIPC_NLA_LINK_NAME={0x14, 0x1, 'broadcast-link\x00'}, @TIPC_NLA_LINK_PROP={0x14, 0x7, [@TIPC_NLA_PROP_TOL={0x0, 0x2, 0x2}, @TIPC_NLA_PROP_TOL={0x8, 0x2, 0xb3e}]}, @TIPC_NLA_LINK_NAME={0xc, 0x1, 'syz1\x00'}]}]}, 0x68}, 0x1, 0x0, 0x0, 0x10}, 0x8000) r6 = syz_open_dev$tty1(0xc, 0x4, 0x1) accept$ax25(r1, 0x0, &(0x7f0000000100)) ioctl$KDSETKEYCODE(r6, 0x4b4d, &(0x7f0000000040)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) clock_gettime(0x0, &(0x7f0000000240)={0x0, 0x0}) io_getevents(0x0, 0x1, 0x0, &(0x7f0000000280), &(0x7f0000000200)={r9, r10+10000000}) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000140)='/dev/nvme-fabrics\x00', 0x2000, 0x0) setsockopt$TIPC_GROUP_LEAVE(r8, 0x10f, 0x88) 20:19:23 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 20:19:23 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:23 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3504.931469] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3504.940405] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3504.949036] 12783 total pagecache pages [ 3504.953101] 0 pages in swap cache [ 3504.956614] Swap cache stats: add 0, delete 0, find 0/0 [ 3504.962056] Free swap = 0kB [ 3504.965133] Total swap = 0kB [ 3504.968203] 1965979 pages RAM [ 3504.971388] 0 pages HighMem/MovableOnly [ 3504.975422] 335858 pages reserved [ 3504.978920] 0 pages cma reserved 20:19:23 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3505.060789] syz-executor.2: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3505.073275] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3505.076791] syz-executor.3: [ 3505.088829] syz-executor.5: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3505.104820] 9pnet: Insufficient options for proto=fd [ 3505.112955] syz-executor.2 cpuset=syz2 mems_allowed=0-1 [ 3505.124113] page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3505.128975] syz-executor.4 cpuset= [ 3505.144255] syz-executor.0: [ 3505.151036] CPU: 1 PID: 9905 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3505.159110] syz4 [ 3505.161884] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3505.164577] page allocation failure: order:5 [ 3505.173243] Call Trace: [ 3505.173277] dump_stack+0x142/0x197 [ 3505.173303] warn_alloc.cold+0x96/0x1af [ 3505.173316] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3505.173340] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3505.182213] mems_allowed=0-1 [ 3505.183955] __alloc_pages_slowpath+0x23c6/0x2930 [ 3505.183985] ? trace_hardirqs_on_caller+0x400/0x590 [ 3505.184001] ? warn_alloc+0xf0/0xf0 [ 3505.208245] , mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask= [ 3505.211125] ? __might_sleep+0x93/0xb0 [ 3505.211143] __alloc_pages_nodemask+0x62c/0x7a0 [ 3505.211157] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3505.211169] ? ____cache_alloc_node+0x1be/0x1d0 [ 3505.211179] ? cache_grow_begin+0x335/0x400 [ 3505.211191] cache_grow_begin+0x80/0x400 [ 3505.211201] ? __cpuset_node_allowed+0xff/0x450 [ 3505.211212] fallback_alloc+0x1fd/0x2c0 [ 3505.211227] ____cache_alloc_node+0x1be/0x1d0 [ 3505.211239] kmem_cache_alloc_trace+0x213/0x790 [ 3505.211248] ? debug_smp_processor_id+0x1c/0x20 [ 3505.211260] ? perf_trace_lock+0x109/0x500 [ 3505.211284] kvm_dev_ioctl+0x163/0x1620 [ 3505.223822] (null) [ 3505.224808] ? kvm_put_kvm+0xaa0/0xaa0 [ 3505.224828] ? kvm_put_kvm+0xaa0/0xaa0 [ 3505.246862] syz-executor.0 cpuset= [ 3505.247514] do_vfs_ioctl+0x7ae/0x1060 [ 3505.275032] syz0 [ 3505.278104] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3505.292894] mems_allowed=0-1 [ 3505.295414] ? lock_downgrade+0x740/0x740 [ 3505.295434] ? ioctl_preallocate+0x1c0/0x1c0 [ 3505.295447] ? __fget+0x237/0x370 [ 3505.295467] ? security_file_ioctl+0x89/0xb0 [ 3505.321629] SyS_ioctl+0x8f/0xc0 [ 3505.325008] ? do_vfs_ioctl+0x1060/0x1060 [ 3505.329170] do_syscall_64+0x1e8/0x640 [ 3505.333066] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3505.337917] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3505.343102] RIP: 0033:0x45a6f9 [ 3505.346291] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3505.354012] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3505.361286] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3505.368558] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3505.375824] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3505.383089] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3505.390375] CPU: 0 PID: 9914 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3505.398186] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3505.407540] Call Trace: [ 3505.410122] dump_stack+0x142/0x197 [ 3505.413749] warn_alloc.cold+0x96/0x1af [ 3505.417721] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3505.422565] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3505.427856] __alloc_pages_slowpath+0x23c6/0x2930 [ 3505.432709] ? save_trace+0x290/0x290 [ 3505.436862] ? warn_alloc+0xf0/0xf0 [ 3505.440509] ? __might_sleep+0x93/0xb0 [ 3505.444393] __alloc_pages_nodemask+0x62c/0x7a0 [ 3505.449059] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3505.454085] ? ____cache_alloc_node+0x1be/0x1d0 [ 3505.458744] ? cache_grow_begin+0x335/0x400 [ 3505.463055] cache_grow_begin+0x80/0x400 [ 3505.467105] ? __cpuset_node_allowed+0xff/0x450 [ 3505.471774] fallback_alloc+0x1fd/0x2c0 [ 3505.475738] ____cache_alloc_node+0x1be/0x1d0 [ 3505.480220] kmem_cache_alloc_trace+0x213/0x790 [ 3505.484879] ? debug_smp_processor_id+0x1c/0x20 [ 3505.489553] ? perf_trace_lock+0x109/0x500 [ 3505.493783] kvm_dev_ioctl+0x163/0x1620 [ 3505.497761] ? kvm_put_kvm+0xaa0/0xaa0 [ 3505.501648] ? kvm_put_kvm+0xaa0/0xaa0 [ 3505.505533] do_vfs_ioctl+0x7ae/0x1060 [ 3505.509426] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3505.514171] ? lock_downgrade+0x740/0x740 [ 3505.518309] ? ioctl_preallocate+0x1c0/0x1c0 [ 3505.522708] ? __fget+0x237/0x370 [ 3505.526155] ? security_file_ioctl+0x89/0xb0 [ 3505.530552] SyS_ioctl+0x8f/0xc0 [ 3505.533915] ? do_vfs_ioctl+0x1060/0x1060 [ 3505.538052] do_syscall_64+0x1e8/0x640 [ 3505.541927] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3505.546760] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3505.551934] RIP: 0033:0x45a6f9 [ 3505.555129] RSP: 002b:00007f063534ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3505.562837] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3505.570091] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3505.577432] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3505.584704] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063534b6d4 [ 3505.591970] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3505.600686] CPU: 0 PID: 9906 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3505.605238] syz-executor.5 cpuset= [ 3505.608515] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3505.608520] Call Trace: [ 3505.608540] dump_stack+0x142/0x197 [ 3505.608558] warn_alloc.cold+0x96/0x1af [ 3505.608573] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3505.614572] syz-executor.3 cpuset= [ 3505.621469] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3505.621487] __alloc_pages_slowpath+0x23c6/0x2930 [ 3505.621512] ? save_trace+0x290/0x290 [ 3505.621529] ? warn_alloc+0xf0/0xf0 [ 3505.621553] ? __might_sleep+0x93/0xb0 [ 3505.621566] __alloc_pages_nodemask+0x62c/0x7a0 [ 3505.621580] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3505.621594] ? ____cache_alloc_node+0x1be/0x1d0 [ 3505.621605] ? cache_grow_begin+0x335/0x400 [ 3505.621622] cache_grow_begin+0x80/0x400 [ 3505.621637] ? __cpuset_node_allowed+0xff/0x450 [ 3505.629779] syz5 [ 3505.631789] fallback_alloc+0x1fd/0x2c0 [ 3505.638796] syz3 [ 3505.640147] ____cache_alloc_node+0x1be/0x1d0 [ 3505.652180] mems_allowed=0-1 [ 3505.654021] kmem_cache_alloc_trace+0x213/0x790 [ 3505.654033] ? debug_smp_processor_id+0x1c/0x20 [ 3505.654047] ? perf_trace_lock+0x109/0x500 [ 3505.654070] kvm_dev_ioctl+0x163/0x1620 [ 3505.657823] mems_allowed=0-1 [ 3505.661566] ? kvm_put_kvm+0xaa0/0xaa0 [ 3505.661587] ? kvm_put_kvm+0xaa0/0xaa0 [ 3505.661600] do_vfs_ioctl+0x7ae/0x1060 [ 3505.661614] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3505.661624] ? lock_downgrade+0x740/0x740 [ 3505.661635] ? ioctl_preallocate+0x1c0/0x1c0 [ 3505.661650] ? __fget+0x237/0x370 [ 3505.661669] ? security_file_ioctl+0x89/0xb0 [ 3505.661684] SyS_ioctl+0x8f/0xc0 [ 3505.661694] ? do_vfs_ioctl+0x1060/0x1060 [ 3505.661709] do_syscall_64+0x1e8/0x640 [ 3505.661720] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3505.773936] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3505.779126] RIP: 0033:0x45a6f9 [ 3505.782305] RSP: 002b:00007f2bca452c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3505.790030] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3505.797301] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3505.804569] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3505.811833] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4536d4 [ 3505.819099] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3505.826855] CPU: 1 PID: 9909 Comm: syz-executor.3 Not tainted 4.14.158-syzkaller #0 [ 3505.834678] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3505.844034] Call Trace: [ 3505.846629] dump_stack+0x142/0x197 [ 3505.850274] warn_alloc.cold+0x96/0x1af [ 3505.854254] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3505.859110] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3505.864393] __alloc_pages_slowpath+0x23c6/0x2930 [ 3505.869250] ? save_trace+0x290/0x290 [ 3505.873059] ? warn_alloc+0xf0/0xf0 [ 3505.876705] ? __might_sleep+0x93/0xb0 [ 3505.876797] warn_alloc_show_mem: 3 callbacks suppressed [ 3505.876801] Mem-Info: [ 3505.880589] __alloc_pages_nodemask+0x62c/0x7a0 [ 3505.880605] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3505.880618] ? ____cache_alloc_node+0x1be/0x1d0 [ 3505.880630] ? cache_grow_begin+0x335/0x400 [ 3505.880649] cache_grow_begin+0x80/0x400 [ 3505.886167] active_anon:1327313 inactive_anon:566 isolated_anon:0 [ 3505.886167] active_file:1575 inactive_file:3828 isolated_file:12 [ 3505.886167] unevictable:0 dirty:105 writeback:0 unstable:0 [ 3505.886167] slab_reclaimable:17194 slab_unreclaimable:118597 [ 3505.886167] mapped:56518 shmem:7461 pagetables:16548 bounce:0 [ 3505.886167] free:38598 free_pcp:212 free_cma:0 [ 3505.888399] ? __cpuset_node_allowed+0xff/0x450 [ 3505.888413] fallback_alloc+0x1fd/0x2c0 [ 3505.888430] ____cache_alloc_node+0x1be/0x1d0 [ 3505.888444] kmem_cache_alloc_trace+0x213/0x790 [ 3505.893551] Node 0 active_anon:1971724kB inactive_anon:1328kB active_file:2780kB inactive_file:14576kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222460kB dirty:272kB writeback:0kB shmem:11956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3505.898104] ? debug_smp_processor_id+0x1c/0x20 [ 3505.898117] ? perf_trace_lock+0x109/0x500 [ 3505.898141] kvm_dev_ioctl+0x163/0x1620 [ 3505.898160] ? kvm_put_kvm+0xaa0/0xaa0 [ 3505.908130] Node 1 active_anon:3337528kB inactive_anon:936kB active_file:3620kB inactive_file:736kB unevictable:0kB isolated(anon):0kB isolated(file):48kB mapped:3612kB dirty:148kB writeback:0kB shmem:17888kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3505.911170] ? kvm_put_kvm+0xaa0/0xaa0 [ 3505.911185] do_vfs_ioctl+0x7ae/0x1060 [ 3505.911199] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3505.911210] ? lock_downgrade+0x740/0x740 [ 3505.911234] ? ioctl_preallocate+0x1c0/0x1c0 [ 3505.950592] Node 0 [ 3505.953768] ? __fget+0x237/0x370 [ 3505.953790] ? security_file_ioctl+0x89/0xb0 [ 3505.953806] SyS_ioctl+0x8f/0xc0 [ 3505.962944] ? do_vfs_ioctl+0x1060/0x1060 [ 3505.996145] DMA free:10400kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3506.000296] do_syscall_64+0x1e8/0x640 [ 3506.000308] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3506.000329] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3506.000339] RIP: 0033:0x45a6f9 [ 3506.000344] RSP: 002b:00007ff826292c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3506.000358] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3506.009320] lowmem_reserve[]: [ 3506.036221] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3506.036229] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3506.036234] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff8262936d4 [ 3506.036239] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3506.041611] CPU: 1 PID: 9908 Comm: syz-executor.5 Not tainted 4.14.158-syzkaller #0 [ 3506.173311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3506.182650] Call Trace: [ 3506.185239] dump_stack+0x142/0x197 [ 3506.188871] warn_alloc.cold+0x96/0x1af [ 3506.192833] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3506.197677] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3506.202942] __alloc_pages_slowpath+0x23c6/0x2930 [ 3506.207795] ? save_trace+0x290/0x290 [ 3506.211586] ? warn_alloc+0xf0/0xf0 [ 3506.215207] ? __might_sleep+0x93/0xb0 [ 3506.219080] __alloc_pages_nodemask+0x62c/0x7a0 [ 3506.223735] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3506.228736] ? ____cache_alloc_node+0x1be/0x1d0 [ 3506.233393] ? cache_grow_begin+0x335/0x400 [ 3506.237717] cache_grow_begin+0x80/0x400 [ 3506.241770] ? __cpuset_node_allowed+0xff/0x450 [ 3506.246426] fallback_alloc+0x1fd/0x2c0 [ 3506.250402] ____cache_alloc_node+0x1be/0x1d0 [ 3506.254903] kmem_cache_alloc_trace+0x213/0x790 [ 3506.259558] ? debug_smp_processor_id+0x1c/0x20 [ 3506.264212] ? perf_trace_lock+0x109/0x500 [ 3506.268444] kvm_dev_ioctl+0x163/0x1620 [ 3506.272408] ? kvm_put_kvm+0xaa0/0xaa0 [ 3506.276287] ? kvm_put_kvm+0xaa0/0xaa0 [ 3506.280163] do_vfs_ioctl+0x7ae/0x1060 [ 3506.284039] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3506.288791] ? lock_downgrade+0x740/0x740 [ 3506.292932] ? ioctl_preallocate+0x1c0/0x1c0 [ 3506.297328] ? __fget+0x237/0x370 [ 3506.300773] ? security_file_ioctl+0x89/0xb0 [ 3506.305170] SyS_ioctl+0x8f/0xc0 [ 3506.308521] ? do_vfs_ioctl+0x1060/0x1060 [ 3506.312661] do_syscall_64+0x1e8/0x640 [ 3506.316535] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3506.321371] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3506.326544] RIP: 0033:0x45a6f9 [ 3506.329718] RSP: 002b:00007f5026ac1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3506.337412] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3506.344670] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3506.351923] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3506.359178] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5026ac26d4 20:19:24 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, 0x0) 20:19:24 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3506.366432] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff 20:19:24 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) rt_sigaction(0x32, &(0x7f0000000180)={&(0x7f0000000080)="edc4e2fd17480ac4e3d14494a1f80000001fc442b5478d00100002470f01dcc423896b82f6ffffff0966460f1edd43c1820db45ba6b7814d39000000003ef20f51cc", {}, 0x58000000, &(0x7f0000000100)="40c06998fe2e460fd97b040fda01c463596c31ff2e2e6566420f38ddebc4c1545eb3003000000fdbf6480fc7a30b0000002e26430fdbb200000000660f3a085800ba"}, &(0x7f0000000240)={&(0x7f00000001c0)="3e2e6426f3400f1ef9c4e1cd71e30865dde8440fa3e68f497812c7366766460f3832cf26d80427f041201470c4e2fd31470bf0f79b03000000", {}, 0x0, &(0x7f0000000200)="c4417b106d05c401f9c204bdb003de5b00e35f643647d9136764f2e02cc483d948012a8fc97883e9c4e1a9d0b6000000002646abf0440fc78c180f000000"}, 0x8, &(0x7f0000000280)) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)={0x81}) ioctl$TIOCGPGRP(r0, 0x540f, &(0x7f0000000000)) 20:19:24 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3506.500099] 0 2569 2569 2569 2569 [ 3506.521215] Node 0 DMA32 free:45376kB min:36380kB low:45472kB high:54564kB active_anon:1967096kB inactive_anon:1328kB active_file:2780kB inactive_file:14684kB unevictable:0kB writepending:36kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28564kB bounce:0kB free_pcp:388kB local_pcp:204kB free_cma:0kB [ 3506.557723] syz-executor.2: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) 20:19:24 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)={0x0, 0xfffffffe}) r1 = syz_init_net_socket$rose(0xb, 0x5, 0x0) getsockopt$rose(r1, 0x104, 0x3, 0x0, &(0x7f00000001c0)=0x105) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$TIOCSBRK(r3, 0x5427) fcntl$dupfd(r0, 0x9e814bcc8566d9b4, r1) [ 3506.562192] syz-executor.3: [ 3506.581252] syz-executor.2 cpuset= [ 3506.583512] page allocation failure: order:5 [ 3506.584302] syz2 mems_allowed=0-1 [ 3506.595786] CPU: 0 PID: 9933 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3506.603673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3506.603680] Call Trace: [ 3506.603703] dump_stack+0x142/0x197 [ 3506.603727] warn_alloc.cold+0x96/0x1af [ 3506.603742] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3506.603769] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3506.603790] __alloc_pages_slowpath+0x23c6/0x2930 [ 3506.638229] ? save_trace+0x290/0x290 [ 3506.642022] ? warn_alloc+0xf0/0xf0 [ 3506.645648] ? __might_sleep+0x93/0xb0 [ 3506.649524] __alloc_pages_nodemask+0x62c/0x7a0 [ 3506.654183] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3506.659193] ? ____cache_alloc_node+0x1be/0x1d0 [ 3506.663861] ? cache_grow_begin+0x335/0x400 [ 3506.668177] cache_grow_begin+0x80/0x400 [ 3506.672750] ? __cpuset_node_allowed+0xff/0x450 [ 3506.677564] fallback_alloc+0x1fd/0x2c0 [ 3506.681557] ____cache_alloc_node+0x1be/0x1d0 [ 3506.686093] kmem_cache_alloc_trace+0x213/0x790 [ 3506.690753] ? debug_smp_processor_id+0x1c/0x20 [ 3506.695410] ? perf_trace_lock+0x109/0x500 [ 3506.699640] kvm_dev_ioctl+0x163/0x1620 [ 3506.703615] ? kvm_put_kvm+0xaa0/0xaa0 [ 3506.707500] ? kvm_put_kvm+0xaa0/0xaa0 [ 3506.711385] do_vfs_ioctl+0x7ae/0x1060 [ 3506.715269] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3506.720018] ? lock_downgrade+0x740/0x740 [ 3506.724268] ? ioctl_preallocate+0x1c0/0x1c0 [ 3506.728665] ? __fget+0x237/0x370 [ 3506.732113] ? security_file_ioctl+0x89/0xb0 [ 3506.736515] SyS_ioctl+0x8f/0xc0 [ 3506.739870] ? do_vfs_ioctl+0x1060/0x1060 [ 3506.744009] do_syscall_64+0x1e8/0x640 [ 3506.747885] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3506.752742] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3506.757920] RIP: 0033:0x45a6f9 [ 3506.761095] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3506.768792] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3506.776053] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3506.783315] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3506.790574] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3506.797840] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3506.810664] , mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3506.815807] lowmem_reserve[]: [ 3506.817189] syz-executor.3 cpuset=syz3 mems_allowed=0-1 [ 3506.817224] CPU: 1 PID: 9935 Comm: syz-executor.3 Not tainted 4.14.158-syzkaller #0 [ 3506.817234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3506.817238] Call Trace: [ 3506.817259] dump_stack+0x142/0x197 [ 3506.833144] 0 [ 3506.833515] warn_alloc.cold+0x96/0x1af [ 3506.850941] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3506.850971] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3506.850991] __alloc_pages_slowpath+0x23c6/0x2930 [ 3506.851018] ? save_trace+0x290/0x290 [ 3506.851035] ? warn_alloc+0xf0/0xf0 [ 3506.863868] 0 [ 3506.865123] ? __might_sleep+0x93/0xb0 [ 3506.865140] __alloc_pages_nodemask+0x62c/0x7a0 [ 3506.865157] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3506.865173] ? ____cache_alloc_node+0x1be/0x1d0 [ 3506.870392] 0 [ 3506.873794] ? cache_grow_begin+0x335/0x400 [ 3506.873811] cache_grow_begin+0x80/0x400 [ 3506.873844] ? __cpuset_node_allowed+0xff/0x450 [ 3506.873858] fallback_alloc+0x1fd/0x2c0 [ 3506.873875] ____cache_alloc_node+0x1be/0x1d0 [ 3506.873889] kmem_cache_alloc_trace+0x213/0x790 [ 3506.877698] 0 [ 3506.879288] ? debug_smp_processor_id+0x1c/0x20 [ 3506.879303] ? perf_trace_lock+0x109/0x500 [ 3506.879327] kvm_dev_ioctl+0x163/0x1620 [ 3506.879347] ? kvm_put_kvm+0xaa0/0xaa0 [ 3506.879364] ? kvm_put_kvm+0xaa0/0xaa0 [ 3506.883604] 0 [ 3506.887911] do_vfs_ioctl+0x7ae/0x1060 [ 3506.887926] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3506.887937] ? lock_downgrade+0x740/0x740 [ 3506.887950] ? ioctl_preallocate+0x1c0/0x1c0 [ 3506.887966] ? __fget+0x237/0x370 [ 3506.887986] ? security_file_ioctl+0x89/0xb0 [ 3506.897636] SyS_ioctl+0x8f/0xc0 20:19:25 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) dup(r0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$SNDRV_SEQ_IOCTL_RUNNING_MODE(r3, 0xc0105303, &(0x7f00000000c0)={0x81, 0xc2, 0x8}) read(r1, &(0x7f0000000000)=""/5, 0x5) [ 3506.897647] ? do_vfs_ioctl+0x1060/0x1060 [ 3506.897664] do_syscall_64+0x1e8/0x640 [ 3506.897674] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3506.897696] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3506.897707] RIP: 0033:0x45a6f9 [ 3506.899689] Node 0 [ 3506.903793] RSP: 002b:00007ff826292c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3506.903804] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3506.903810] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3506.903815] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3506.903821] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff8262936d4 [ 3506.903827] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3506.976847] Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3507.007744] lowmem_reserve[]: [ 3507.049004] warn_alloc_show_mem: 3 callbacks suppressed [ 3507.049009] Mem-Info: [ 3507.080086] 0 [ 3507.083042] active_anon:1327401 inactive_anon:566 isolated_anon:0 [ 3507.083042] active_file:1593 inactive_file:3836 isolated_file:0 [ 3507.083042] unevictable:0 dirty:32 writeback:0 unstable:0 [ 3507.083042] slab_reclaimable:17194 slab_unreclaimable:118587 [ 3507.083042] mapped:56602 shmem:7461 pagetables:16561 bounce:0 [ 3507.083042] free:38444 free_pcp:365 free_cma:0 [ 3507.083952] 0 [ 3507.098433] Node 0 active_anon:1971644kB inactive_anon:1328kB active_file:2780kB inactive_file:14684kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222620kB dirty:32kB writeback:0kB shmem:11956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3507.126261] 0 [ 3507.155035] 9pnet: Insufficient options for proto=fd [ 3507.165218] 0 0 [ 3507.173456] Node 1 Normal free:97216kB min:53508kB low:66884kB high:80260kB active_anon:3337684kB inactive_anon:936kB active_file:3092kB inactive_file:800kB unevictable:0kB writepending:368kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11424kB pagetables:37788kB bounce:0kB free_pcp:992kB local_pcp:572kB free_cma:0kB [ 3507.198054] Node 1 active_anon:3337660kB inactive_anon:936kB active_file:3592kB inactive_file:660kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:3688kB dirty:96kB writeback:0kB shmem:17888kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3507.253704] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3507.254870] Node 0 DMA free:10400kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3507.270941] syz-executor.4 cpuset= [ 3507.292408] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3507.298716] lowmem_reserve[]: 0 0 0 0 0 [ 3507.302069] Node 0 DMA32 free:45576kB min:36380kB low:45472kB high:54564kB active_anon:1967132kB inactive_anon:1328kB active_file:2852kB inactive_file:14692kB unevictable:0kB writepending:160kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28364kB bounce:0kB free_pcp:468kB local_pcp:468kB free_cma:0kB [ 3507.305638] Node 0 [ 3507.335604] lowmem_reserve[]: 0 0 0 0 0 [ 3507.342355] Node 0 [ 3507.342443] syz4 [ 3507.342616] Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3507.344935] mems_allowed=0-1 [ 3507.346809] lowmem_reserve[]: [ 3507.371605] DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 6*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10400kB [ 3507.380744] 0 [ 3507.393757] CPU: 0 PID: 9922 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3507.393764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3507.393770] Call Trace: [ 3507.403297] 0 [ 3507.403371] dump_stack+0x142/0x197 [ 3507.415839] 0 [ 3507.417132] warn_alloc.cold+0x96/0x1af [ 3507.417144] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3507.417166] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3507.424981] 0 [ 3507.426530] __alloc_pages_slowpath+0x23c6/0x2930 [ 3507.426556] ? save_trace+0x290/0x290 [ 3507.426574] ? warn_alloc+0xf0/0xf0 [ 3507.435404] 0 [ 3507.436673] ? __might_sleep+0x93/0xb0 [ 3507.436689] __alloc_pages_nodemask+0x62c/0x7a0 [ 3507.436704] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3507.443321] ? ____cache_alloc_node+0x1be/0x1d0 [ 3507.443335] ? cache_grow_begin+0x335/0x400 [ 3507.443353] cache_grow_begin+0x80/0x400 [ 3507.443365] ? __cpuset_node_allowed+0xff/0x450 [ 3507.443376] fallback_alloc+0x1fd/0x2c0 [ 3507.443393] ____cache_alloc_node+0x1be/0x1d0 [ 3507.443406] kmem_cache_alloc_trace+0x213/0x790 [ 3507.443416] ? debug_smp_processor_id+0x1c/0x20 [ 3507.443428] ? perf_trace_lock+0x109/0x500 [ 3507.443449] kvm_dev_ioctl+0x163/0x1620 [ 3507.443467] ? kvm_put_kvm+0xaa0/0xaa0 [ 3507.443482] ? kvm_put_kvm+0xaa0/0xaa0 [ 3507.443495] do_vfs_ioctl+0x7ae/0x1060 [ 3507.454955] Node 1 [ 3507.456563] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3507.456575] ? lock_downgrade+0x740/0x740 [ 3507.456590] ? ioctl_preallocate+0x1c0/0x1c0 [ 3507.456604] ? __fget+0x237/0x370 [ 3507.463362] Normal free:98332kB min:53508kB low:66884kB high:80260kB active_anon:3337608kB inactive_anon:928kB active_file:3616kB inactive_file:664kB unevictable:0kB writepending:176kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11296kB pagetables:37612kB bounce:0kB free_pcp:648kB local_pcp:648kB free_cma:0kB [ 3507.466262] ? security_file_ioctl+0x89/0xb0 [ 3507.466278] SyS_ioctl+0x8f/0xc0 [ 3507.466289] ? do_vfs_ioctl+0x1060/0x1060 [ 3507.466305] do_syscall_64+0x1e8/0x640 [ 3507.476261] lowmem_reserve[]: [ 3507.479310] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3507.479334] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3507.479344] RIP: 0033:0x45a6f9 [ 3507.479351] RSP: 002b:00007f2bca452c78 EFLAGS: 00000246 [ 3507.486097] 0 [ 3507.488080] ORIG_RAX: 0000000000000010 [ 3507.488088] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3507.488094] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3507.488100] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3507.488105] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4536d4 [ 3507.488111] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3507.488429] Node 0 [ 3507.505757] 0 [ 3507.506356] DMA32: [ 3507.513284] 0 [ 3507.514283] 2542*4kB [ 3507.518325] 0 [ 3507.522142] (UME) 1765*8kB (UME) 1103*16kB (UM) 105*32kB (UME) 5*64kB [ 3507.528640] 0 [ 3507.529197] (UME) [ 3507.537819] 0*128kB 0*256kB [ 3507.545514] Node 0 [ 3507.570418] 0*512kB 0*1024kB 0*2048kB 0*4096kB = 45616kB [ 3507.570441] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3507.570499] Node 1 Normal: 1424*4kB (UME) 484*8kB (UME) 2303*16kB (UME) [ 3507.582313] DMA: [ 3507.582546] 1397*32kB [ 3507.586619] 12*4kB [ 3507.590661] (UMEH) [ 3507.599711] (UMEH) [ 3507.611199] 112*64kB [ 3507.621500] (UMH) [ 3507.649337] 12*8kB [ 3507.661359] (UMH) [ 3507.662568] 1*128kB [ 3507.673499] 9*16kB [ 3507.674611] (H) [ 3507.681668] (UMEH) [ 3507.693582] 0*256kB [ 3507.707438] 6*32kB [ 3507.710135] 0*512kB [ 3507.711787] (UMEH) [ 3507.713736] 0*1024kB [ 3507.716157] 3*64kB [ 3507.718313] 0*2048kB [ 3507.727652] (MEH) [ 3507.729331] 0*4096kB [ 3507.731848] 4*128kB [ 3507.733985] = 98416kB [ 3507.736254] (UMEH) [ 3507.738747] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3507.748067] 2*256kB [ 3507.748323] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3507.750755] (ME) [ 3507.752853] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3507.755216] 3*512kB [ 3507.757644] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3507.759878] (ME) 20:19:26 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB, @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:19:26 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3507.768794] 12904 total pagecache pages [ 3507.768805] 0 pages in swap cache [ 3507.768812] Swap cache stats: add 0, delete 0, find 0/0 [ 3507.768816] Free swap = 0kB [ 3507.768823] Total swap = 0kB [ 3507.778634] 3*1024kB [ 3507.779824] 1965979 pages RAM [ 3507.782150] (UEH) [ 3507.790887] 0 pages HighMem/MovableOnly [ 3507.790891] 335858 pages reserved [ 3507.790895] 0 pages cma reserved [ 3507.814272] 2*2048kB [ 3507.858683] (UE) 0*4096kB = 10400kB [ 3507.895510] Node 0 DMA32: 2578*4kB (UE) 1762*8kB (UME) 1101*16kB (UM) 105*32kB (UME) 5*64kB (UME) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 45704kB [ 3507.963046] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3507.976775] Node 1 Normal: 1404*4kB (UE) 432*8kB (UE) 2308*16kB (UE) 1392*32kB (UEH) 111*64kB (UH) 1*128kB (H) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 97776kB [ 3507.999551] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3508.008538] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3508.041162] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3508.068719] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3508.097069] 12937 total pagecache pages [ 3508.101247] 0 pages in swap cache [ 3508.108673] Swap cache stats: add 0, delete 0, find 0/0 [ 3508.114368] Free swap = 0kB [ 3508.121229] Total swap = 0kB [ 3508.127760] 1965979 pages RAM [ 3508.136192] 0 pages HighMem/MovableOnly 20:19:26 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) 20:19:26 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:26 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, 0x0) 20:19:26 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) lsetxattr$trusted_overlay_redirect(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)='trusted.overlay.redirect\x00', &(0x7f00000000c0)='./file0\x00', 0x8, 0x2) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) listxattr(&(0x7f0000000100)='./file0\x00', &(0x7f0000000140)=""/7, 0x7) 20:19:26 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:26 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) [ 3508.150219] 335858 pages reserved [ 3508.155339] 0 pages cma reserved 20:19:26 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)={0x0, 0x81}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$TIOCMSET(r2, 0x5418, &(0x7f0000000080)=0x3) connect$caif(0xffffffffffffffff, &(0x7f0000000000)=@util={0x25, "ed9af30c1c34e35b50fe56cae655a14f"}, 0x18) [ 3508.328650] 9pnet: Insufficient options for proto=fd [ 3508.388348] 9pnet: Could not find request transport: fd0x0000000000000003 20:19:26 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:26 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, 0x0) 20:19:26 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:27 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:19:27 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(0xffffffffffffffff, 0x6, 0x16, &(0x7f00000001c0)=[@window={0x3, 0x9, 0xfc01}, @window={0x3, 0x629, 0x91}, @mss={0x2, 0x8000}, @sack_perm, @window={0x3, 0x3, 0x101}], 0x5) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) getsockopt$IP6T_SO_GET_ENTRIES(r1, 0x29, 0x41, &(0x7f0000000080)={'raw\x00', 0x44, "3d29e98c1d469cf65e5dc070c791ea065342053f5b9bdc8cc0bc6e6fde58b2a64db1bc82bd5c299023e208a0c66e958493a01400424417d57ff7414045da2d5a5ed13c82"}, &(0x7f0000000000)=0x68) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r2, 0x4b4d, &(0x7f0000000040)) r3 = getegid() ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000280)=0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xfffffffffffffd6d) setregid(r5, 0xffffffffffffffff) r6 = getpid() sched_setattr(r6, &(0x7f0000000040)={0x30, 0x2, 0x0, 0x0, 0x5}, 0x0) sched_setattr(r6, &(0x7f00000002c0)={0x30, 0x2, 0x0, 0x1, 0x7f, 0x7, 0x100, 0x3f}, 0xdd963deea12e02c7) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000006c0)={0x0, 0x0, 0x0}, &(0x7f0000000700)=0xc) lsetxattr$system_posix_acl(&(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000740)={{}, {0x1, 0x4}, [{0x2, 0x0, r4}, {0x2, 0x1}, {}], {0x4, 0x1}, [{}, {0x8, 0x4}, {0x8, 0x7}, {}, {0x8, 0x1}, {0x8, 0xc, r5}, {0x8, 0x0, r7}], {0x10, 0x2}}, 0x74, 0x2) r8 = syz_open_dev$usbfs(&(0x7f0000000840)='/dev/bus/usb/00#/00#\x00', 0x908, 0x1) ioctl$NS_GET_OWNER_UID(0xffffffffffffffff, 0xb704, &(0x7f0000000280)=0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, 0x0}, &(0x7f0000cab000)=0xfffffffffffffd6d) setregid(r10, 0xffffffffffffffff) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f00000006c0)={0x0, 0x0, 0x0}, &(0x7f0000000700)=0xc) lsetxattr$system_posix_acl(&(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="02000000010004000000000002000000", @ANYRES32=r9, @ANYBLOB="02000100", @ANYRES32=0x0, @ANYBLOB="02000000", @ANYRES32=0x0, @ANYBLOB="040001000000000008000000", @ANYRES32=0x0, @ANYBLOB="08000400", @ANYRES32=0x0, @ANYBLOB='\b\x00\a\x00', @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="08000100", @ANYRES32=0x0, @ANYBLOB="000000e4", @ANYRES32=r10, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=r11, @ANYBLOB="10000200000000002000000000000000"], 0x74, 0x2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r13 = dup(r12) ioctl$PERF_EVENT_IOC_ENABLE(r13, 0x8912, 0x400200) ioctl$sock_FIOGETOWN(r13, 0x8903, &(0x7f0000000200)) ioctl$USBDEVFS_SUBMITURB(r8, 0x8038550a, &(0x7f0000000e80)=ANY=[@ANYBLOB="00070000020000002000000000000000", @ANYPTR=&(0x7f0000000240)=ANY=[@ANYBLOB="3175b189b72f0ac8f23287271e4525f92b5ca982b9671690"], @ANYRESDEC=r11, @ANYPTR=&(0x7f0000000880)=ANY=[@ANYBLOB="44f281405434d9ad5599b4a78471e9ac4138e06078fb13e3cadb9169015f6f05f6b352ef471274f24fedb7eab0b13cb3efafb44f4f22033b3e56f5a0e9bb0047dc84e7dd836f57b916482368cd0a0d2be5ee"], @ANYBLOB="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"]) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000100)={0x0, 0x0, 0x0}, &(0x7f0000000140)=0xc) setgroups(0x6, &(0x7f0000000180)=[r5, r3, r3, r11, r14, r3]) [ 3508.723145] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3508.755433] 9pnet: Insufficient options for proto=fd 20:19:27 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3508.769912] syz-executor.3: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3508.796379] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 3508.842719] CPU: 0 PID: 9997 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3508.850566] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3508.856202] syz-executor.3 cpuset= [ 3508.859920] Call Trace: [ 3508.859940] dump_stack+0x142/0x197 [ 3508.859961] warn_alloc.cold+0x96/0x1af [ 3508.859978] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3508.859999] ? __alloc_pages_direct_compact+0x290/0x380 [ 3508.883920] __alloc_pages_slowpath+0x23c6/0x2930 [ 3508.888777] ? save_trace+0x290/0x290 [ 3508.892580] ? warn_alloc+0xf0/0xf0 [ 3508.892605] ? __might_sleep+0x93/0xb0 [ 3508.892619] __alloc_pages_nodemask+0x62c/0x7a0 [ 3508.892634] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3508.892647] ? ____cache_alloc_node+0x1be/0x1d0 [ 3508.914457] ? cache_grow_begin+0x335/0x400 [ 3508.917935] 9pnet: Could not find request transport: fd0x0000000000000003 [ 3508.918792] cache_grow_begin+0x80/0x400 [ 3508.918807] ? __cpuset_node_allowed+0xff/0x450 [ 3508.918820] fallback_alloc+0x1fd/0x2c0 [ 3508.918836] ____cache_alloc_node+0x1be/0x1d0 [ 3508.927441] syz3 [ 3508.929810] kmem_cache_alloc_trace+0x213/0x790 [ 3508.946504] mems_allowed=0-1 [ 3508.949512] ? debug_smp_processor_id+0x1c/0x20 [ 3508.949528] ? perf_trace_lock+0x109/0x500 [ 3508.949552] kvm_dev_ioctl+0x163/0x1620 [ 3508.949570] ? kvm_put_kvm+0xaa0/0xaa0 [ 3508.969386] ? kvm_put_kvm+0xaa0/0xaa0 [ 3508.973277] do_vfs_ioctl+0x7ae/0x1060 [ 3508.977181] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3508.981951] ? lock_downgrade+0x740/0x740 [ 3508.986109] ? ioctl_preallocate+0x1c0/0x1c0 [ 3508.990527] ? __fget+0x237/0x370 [ 3508.994003] ? security_file_ioctl+0x89/0xb0 [ 3508.998415] SyS_ioctl+0x8f/0xc0 [ 3509.001781] ? do_vfs_ioctl+0x1060/0x1060 [ 3509.005941] do_syscall_64+0x1e8/0x640 [ 3509.009826] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3509.014667] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3509.019845] RIP: 0033:0x45a6f9 [ 3509.023023] RSP: 002b:00007f2bca452c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3509.030734] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 20:19:27 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3509.038006] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3509.045263] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3509.052524] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4536d4 [ 3509.059798] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3509.067080] CPU: 1 PID: 10004 Comm: syz-executor.3 Not tainted 4.14.158-syzkaller #0 [ 3509.074976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3509.084447] Call Trace: [ 3509.087046] dump_stack+0x142/0x197 [ 3509.090682] warn_alloc.cold+0x96/0x1af [ 3509.094651] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3509.099507] ? __alloc_pages_direct_compact+0x290/0x380 [ 3509.104863] __alloc_pages_slowpath+0x23c6/0x2930 [ 3509.109700] ? save_trace+0x290/0x290 [ 3509.113497] ? warn_alloc+0xf0/0xf0 [ 3509.117124] ? __might_sleep+0x93/0xb0 [ 3509.121006] __alloc_pages_nodemask+0x62c/0x7a0 [ 3509.125669] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3509.130677] ? ____cache_alloc_node+0x1be/0x1d0 [ 3509.135335] ? cache_grow_begin+0x335/0x400 [ 3509.139677] cache_grow_begin+0x80/0x400 [ 3509.143735] ? __cpuset_node_allowed+0xff/0x450 [ 3509.148393] fallback_alloc+0x1fd/0x2c0 [ 3509.152357] ____cache_alloc_node+0x1be/0x1d0 [ 3509.156847] kmem_cache_alloc_trace+0x213/0x790 [ 3509.161503] ? debug_smp_processor_id+0x1c/0x20 [ 3509.166155] ? perf_trace_lock+0x109/0x500 [ 3509.170383] kvm_dev_ioctl+0x163/0x1620 [ 3509.174348] ? kvm_put_kvm+0xaa0/0xaa0 [ 3509.178223] ? kvm_put_kvm+0xaa0/0xaa0 [ 3509.182096] do_vfs_ioctl+0x7ae/0x1060 [ 3509.185969] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3509.190709] ? lock_downgrade+0x740/0x740 [ 3509.194840] ? ioctl_preallocate+0x1c0/0x1c0 [ 3509.199237] ? __fget+0x237/0x370 [ 3509.202681] ? security_file_ioctl+0x89/0xb0 [ 3509.207097] SyS_ioctl+0x8f/0xc0 [ 3509.210453] ? do_vfs_ioctl+0x1060/0x1060 [ 3509.214589] do_syscall_64+0x1e8/0x640 [ 3509.218461] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3509.223294] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3509.228468] RIP: 0033:0x45a6f9 [ 3509.231639] RSP: 002b:00007ff826292c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 20:19:27 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x3) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) setsockopt$inet6_MRT6_ADD_MFC_PROXY(r2, 0x29, 0xd2, &(0x7f0000000080)={{0xa, 0x4e23, 0x0, @empty, 0x3}, {0xa, 0x4e23, 0x57e3bbc3, @remote, 0x8000}, 0x400, [0x47cb, 0x6, 0x9, 0x80000000, 0x7, 0x0, 0x9, 0x9]}, 0x5c) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) [ 3509.239331] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3509.246584] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3509.253835] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3509.261089] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff8262936d4 [ 3509.268344] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3509.279026] 9pnet: Insufficient options for proto=fd 20:19:27 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) [ 3509.319604] warn_alloc_show_mem: 3 callbacks suppressed [ 3509.319608] Mem-Info: [ 3509.323956] 9pnet: Insufficient options for proto=fd 20:19:27 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3509.360442] active_anon:1327305 inactive_anon:564 isolated_anon:0 [ 3509.360442] active_file:1572 inactive_file:3846 isolated_file:0 [ 3509.360442] unevictable:0 dirty:121 writeback:0 unstable:0 [ 3509.360442] slab_reclaimable:17104 slab_unreclaimable:119128 [ 3509.360442] mapped:56577 shmem:7461 pagetables:16518 bounce:0 [ 3509.360442] free:38027 free_pcp:366 free_cma:0 20:19:27 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) getsockopt$IP_VS_SO_GET_TIMEOUT(r2, 0x0, 0x486, &(0x7f0000000000), &(0x7f0000000080)=0xc) [ 3509.500391] 9pnet: Could not find request transport: fd0x0000000000000003 20:19:27 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$VIDIOC_ENUMOUTPUT(r2, 0xc0485630, &(0x7f0000000080)={0xc0, "0900ac9950603a2b1e3bbf2a5d2ff3ee6a39edab2100", 0x53b2ce4c2d980b05, 0x7ff, 0x5, 0x100000, 0xe}) r3 = socket$inet_smc(0x2b, 0x1, 0x0) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r3, 0x6612) [ 3509.542254] 9pnet: Insufficient options for proto=fd [ 3509.551985] Node 0 active_anon:1971892kB inactive_anon:1344kB active_file:2888kB inactive_file:14876kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222656kB dirty:356kB writeback:0kB shmem:11976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes 20:19:28 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:19:28 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX]) [ 3509.746505] Node 1 active_anon:3337328kB inactive_anon:912kB active_file:3272kB inactive_file:508kB unevictable:0kB isolated(anon):92kB isolated(file):0kB mapped:3552kB dirty:128kB writeback:0kB shmem:17868kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3509.785425] Node 0 DMA free:10400kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3509.813239] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3509.818316] Node 0 DMA32 free:45640kB min:36380kB low:45472kB high:54564kB active_anon:1967144kB inactive_anon:1344kB active_file:2888kB inactive_file:14976kB unevictable:0kB writepending:208kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28500kB bounce:0kB free_pcp:968kB local_pcp:624kB free_cma:0kB [ 3509.852115] lowmem_reserve[]: 0 0 0 0 0 [ 3509.872850] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3509.914763] 9pnet: Insufficient options for proto=fd [ 3509.925749] 9pnet: Insufficient options for proto=fd [ 3509.947154] lowmem_reserve[]: 0 0 0 0 0 [ 3509.951622] Node 1 Normal free:95704kB min:53508kB low:66884kB high:80260kB active_anon:3337428kB inactive_anon:912kB active_file:3224kB inactive_file:492kB unevictable:0kB writepending:128kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11264kB pagetables:37720kB bounce:0kB free_pcp:1052kB local_pcp:580kB free_cma:0kB [ 3509.981483] lowmem_reserve[]: 0 0 0 0 0 [ 3509.985493] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 6*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10400kB [ 3510.010838] Node 0 DMA32: 2562*4kB (UME) 1796*8kB (UME) 1067*16kB (UM) 108*32kB (UME) 5*64kB (UME) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 45464kB [ 3510.047998] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3510.058932] Node 1 Normal: 1332*4kB (UME) 281*8kB (UME) 2134*16kB (UME) 1414*32kB (UMEH) 131*64kB (UMH) 1*128kB (H) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 95480kB [ 3510.102687] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3510.111900] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3510.120787] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3510.129632] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3510.138553] 12875 total pagecache pages [ 3510.142978] 0 pages in swap cache [ 3510.146440] Swap cache stats: add 0, delete 0, find 0/0 [ 3510.152017] Free swap = 0kB [ 3510.155033] Total swap = 0kB [ 3510.158051] 1965979 pages RAM [ 3510.161310] 0 pages HighMem/MovableOnly [ 3510.165282] 335858 pages reserved [ 3510.168730] 0 pages cma reserved 20:19:28 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:28 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX]) 20:19:28 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:19:28 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:28 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$PPPIOCGNPMODE(r2, 0xc008744c, &(0x7f0000000000)={0x1c067, 0x1}) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) 20:19:28 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3510.327213] 9pnet: Insufficient options for proto=fd 20:19:28 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x5) setsockopt$inet_MCAST_JOIN_GROUP(r2, 0x0, 0x2a, &(0x7f0000000080)={0x0, {{0x2, 0x4e22, @rand_addr=0x3}}}, 0x88) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$DRM_IOCTL_MODE_GETRESOURCES(r4, 0xc04064a0, &(0x7f0000000200)={&(0x7f0000000000)=[0x0, 0x0], &(0x7f0000000140)=[0x0, 0x0, 0x0, 0x0], &(0x7f0000000180)=[0x0, 0x0, 0x0], &(0x7f00000001c0)=[0x0, 0x0], 0x2, 0x4, 0x3, 0x2}) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)={0x0, 0x4000}) 20:19:28 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3510.372493] 9pnet: Insufficient options for proto=fd [ 3510.381962] 9pnet: Insufficient options for proto=fd [ 3510.411840] 9pnet: Insufficient options for proto=fd [ 3510.458180] warn_alloc: 2 callbacks suppressed [ 3510.458185] syz-executor.4: 20:19:28 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfd', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) [ 3510.513460] page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3510.558637] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 3510.580669] CPU: 1 PID: 10062 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3510.588856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3510.598226] Call Trace: [ 3510.598245] dump_stack+0x142/0x197 [ 3510.598265] warn_alloc.cold+0x96/0x1af [ 3510.598277] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3510.598300] ? __alloc_pages_direct_compact+0x290/0x380 [ 3510.598314] __alloc_pages_slowpath+0x23c6/0x2930 [ 3510.623523] ? save_trace+0x290/0x290 [ 3510.627342] ? warn_alloc+0xf0/0xf0 [ 3510.630998] ? __might_sleep+0x93/0xb0 [ 3510.634897] __alloc_pages_nodemask+0x62c/0x7a0 [ 3510.639598] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3510.639614] ? ____cache_alloc_node+0x1be/0x1d0 [ 3510.639627] ? cache_grow_begin+0x335/0x400 [ 3510.639644] cache_grow_begin+0x80/0x400 20:19:28 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3510.639656] ? __cpuset_node_allowed+0xff/0x450 [ 3510.639668] fallback_alloc+0x1fd/0x2c0 [ 3510.665761] syz-executor.2: [ 3510.667550] ____cache_alloc_node+0x1be/0x1d0 [ 3510.667568] kmem_cache_alloc_trace+0x213/0x790 [ 3510.667580] ? debug_smp_processor_id+0x1c/0x20 [ 3510.667594] ? perf_trace_lock+0x109/0x500 [ 3510.667614] kvm_dev_ioctl+0x163/0x1620 [ 3510.672402] syz-executor.0: [ 3510.675115] ? kvm_put_kvm+0xaa0/0xaa0 [ 3510.675136] ? kvm_put_kvm+0xaa0/0xaa0 [ 3510.675151] do_vfs_ioctl+0x7ae/0x1060 [ 3510.675165] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3510.675177] ? lock_downgrade+0x740/0x740 [ 3510.682381] syz-executor.5: [ 3510.684550] ? ioctl_preallocate+0x1c0/0x1c0 [ 3510.684568] ? __fget+0x237/0x370 [ 3510.684588] ? security_file_ioctl+0x89/0xb0 [ 3510.684603] SyS_ioctl+0x8f/0xc0 [ 3510.692203] page allocation failure: order:5 [ 3510.692825] ? do_vfs_ioctl+0x1060/0x1060 [ 3510.692849] do_syscall_64+0x1e8/0x640 [ 3510.692860] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3510.692884] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3510.696116] page allocation failure: order:5 [ 3510.699764] RIP: 0033:0x45a6f9 [ 3510.699770] RSP: 002b:00007f2bca452c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3510.699782] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3510.699788] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3510.699794] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3510.699801] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4536d4 20:19:29 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) [ 3510.699808] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3510.769854] warn_alloc_show_mem: 1 callbacks suppressed [ 3510.769859] Mem-Info: [ 3510.779701] page allocation failure: order:5 [ 3510.795751] 9pnet: Insufficient options for proto=fd [ 3510.803742] , mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask= [ 3510.818797] 9pnet: Insufficient options for proto=fd [ 3510.848717] active_anon:1327301 inactive_anon:566 isolated_anon:34 [ 3510.848717] active_file:1459 inactive_file:3906 isolated_file:0 [ 3510.848717] unevictable:0 dirty:59 writeback:0 unstable:0 [ 3510.848717] slab_reclaimable:17043 slab_unreclaimable:119804 [ 3510.848717] mapped:56547 shmem:7461 pagetables:16519 bounce:0 [ 3510.848717] free:37558 free_pcp:31 free_cma:0 [ 3510.856923] (null) [ 3510.885622] , mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3510.901245] syz-executor.2 cpuset=syz2 mems_allowed=0-1 [ 3510.914189] CPU: 0 PID: 10089 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3510.922094] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3510.931449] Call Trace: [ 3510.934048] dump_stack+0x142/0x197 [ 3510.937800] warn_alloc.cold+0x96/0x1af [ 3510.941787] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3510.946655] ? __alloc_pages_direct_compact+0x290/0x380 [ 3510.952030] __alloc_pages_slowpath+0x23c6/0x2930 [ 3510.956895] ? save_trace+0x290/0x290 [ 3510.956916] ? warn_alloc+0xf0/0xf0 [ 3510.956943] ? __might_sleep+0x93/0xb0 [ 3510.956956] __alloc_pages_nodemask+0x62c/0x7a0 [ 3510.968328] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3510.968342] ? ____cache_alloc_node+0x1be/0x1d0 [ 3510.968355] ? cache_grow_begin+0x335/0x400 [ 3510.968372] cache_grow_begin+0x80/0x400 [ 3510.968386] ? __cpuset_node_allowed+0xff/0x450 [ 3510.988252] Node 0 active_anon:1971952kB inactive_anon:1360kB active_file:3000kB inactive_file:15244kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:222916kB dirty:160kB writeback:0kB shmem:11988kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3510.991056] fallback_alloc+0x1fd/0x2c0 [ 3510.991076] ____cache_alloc_node+0x1be/0x1d0 [ 3510.991093] kmem_cache_alloc_trace+0x213/0x790 [ 3510.991104] ? debug_smp_processor_id+0x1c/0x20 [ 3510.991117] ? perf_trace_lock+0x109/0x500 [ 3510.991138] kvm_dev_ioctl+0x163/0x1620 [ 3510.991159] ? kvm_put_kvm+0xaa0/0xaa0 [ 3510.991178] ? kvm_put_kvm+0xaa0/0xaa0 [ 3510.991194] do_vfs_ioctl+0x7ae/0x1060 [ 3510.999760] syz-executor.5 cpuset= [ 3511.024325] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3511.024340] ? lock_downgrade+0x740/0x740 [ 3511.024353] ? ioctl_preallocate+0x1c0/0x1c0 [ 3511.024365] ? __fget+0x237/0x370 [ 3511.024383] ? security_file_ioctl+0x89/0xb0 [ 3511.024397] SyS_ioctl+0x8f/0xc0 [ 3511.024407] ? do_vfs_ioctl+0x1060/0x1060 [ 3511.024423] do_syscall_64+0x1e8/0x640 [ 3511.024434] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3511.024454] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3511.024462] RIP: 0033:0x45a6f9 [ 3511.024467] RSP: 002b:00007fcf27685c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3511.024478] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3511.024484] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3511.024489] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 3511.024495] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276866d4 [ 3511.024502] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3511.104303] , mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask= 20:19:29 executing program 1: socket$nl_xfrm(0x10, 0x3, 0x6) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) [ 3511.120140] Node 1 active_anon:3337444kB inactive_anon:912kB active_file:2744kB inactive_file:432kB unevictable:0kB isolated(anon):136kB isolated(file):92kB mapped:3092kB dirty:44kB writeback:80kB shmem:17868kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3511.201540] (null) [ 3511.207365] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 3511.223199] CPU: 0 PID: 10088 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3511.231114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3511.232558] Node 0 [ 3511.240465] Call Trace: [ 3511.240485] dump_stack+0x142/0x197 [ 3511.240506] warn_alloc.cold+0x96/0x1af [ 3511.240516] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3511.240538] ? __alloc_pages_direct_compact+0x290/0x380 [ 3511.240551] __alloc_pages_slowpath+0x23c6/0x2930 [ 3511.240573] ? save_trace+0x290/0x290 [ 3511.240590] ? warn_alloc+0xf0/0xf0 [ 3511.243733] DMA free:10400kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3511.245405] ? __might_sleep+0x93/0xb0 [ 3511.245420] __alloc_pages_nodemask+0x62c/0x7a0 [ 3511.245435] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3511.249094] lowmem_reserve[]: [ 3511.252997] ? ____cache_alloc_node+0x1be/0x1d0 [ 3511.253008] ? cache_grow_begin+0x335/0x400 [ 3511.253023] cache_grow_begin+0x80/0x400 [ 3511.253035] ? __cpuset_node_allowed+0xff/0x450 [ 3511.253049] fallback_alloc+0x1fd/0x2c0 [ 3511.253065] ____cache_alloc_node+0x1be/0x1d0 [ 3511.253078] kmem_cache_alloc_trace+0x213/0x790 [ 3511.253088] ? debug_smp_processor_id+0x1c/0x20 [ 3511.253098] ? perf_trace_lock+0x109/0x500 [ 3511.253121] kvm_dev_ioctl+0x163/0x1620 [ 3511.258006] 0 [ 3511.263387] ? kvm_put_kvm+0xaa0/0xaa0 [ 3511.263407] ? kvm_put_kvm+0xaa0/0xaa0 [ 3511.263420] do_vfs_ioctl+0x7ae/0x1060 [ 3511.263432] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3511.263442] ? lock_downgrade+0x740/0x740 [ 3511.263457] ? ioctl_preallocate+0x1c0/0x1c0 [ 3511.268354] 2569 [ 3511.272063] ? __fget+0x237/0x370 [ 3511.272084] ? security_file_ioctl+0x89/0xb0 [ 3511.272098] SyS_ioctl+0x8f/0xc0 [ 3511.272108] ? do_vfs_ioctl+0x1060/0x1060 [ 3511.272123] do_syscall_64+0x1e8/0x640 [ 3511.272132] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3511.272155] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3511.275815] 2569 20:19:29 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:29 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3511.301501] RIP: 0033:0x45a6f9 [ 3511.301507] RSP: 002b:00007f063534ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3511.301517] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3511.301524] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3511.301530] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3511.301537] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063534b6d4 [ 3511.301542] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3511.375720] syz5 [ 3511.475681] mems_allowed=0-1 [ 3511.478884] CPU: 1 PID: 10090 Comm: syz-executor.5 Not tainted 4.14.158-syzkaller #0 [ 3511.486939] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3511.496310] Call Trace: [ 3511.498907] dump_stack+0x142/0x197 [ 3511.502547] warn_alloc.cold+0x96/0x1af [ 3511.506526] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3511.511384] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3511.513579] syz-executor.2: [ 3511.516670] __alloc_pages_slowpath+0x23c6/0x2930 [ 3511.516697] ? save_trace+0x290/0x290 [ 3511.516715] ? warn_alloc+0xf0/0xf0 [ 3511.516738] ? __might_sleep+0x93/0xb0 [ 3511.519939] page allocation failure: order:5 [ 3511.524570] __alloc_pages_nodemask+0x62c/0x7a0 [ 3511.524585] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3511.524598] ? ____cache_alloc_node+0x1be/0x1d0 [ 3511.524611] ? cache_grow_begin+0x335/0x400 [ 3511.524628] cache_grow_begin+0x80/0x400 [ 3511.524640] ? __cpuset_node_allowed+0xff/0x450 [ 3511.524656] fallback_alloc+0x1fd/0x2c0 [ 3511.535949] ____cache_alloc_node+0x1be/0x1d0 [ 3511.535966] kmem_cache_alloc_trace+0x213/0x790 [ 3511.535977] ? debug_smp_processor_id+0x1c/0x20 [ 3511.535991] ? perf_trace_lock+0x109/0x500 [ 3511.536012] kvm_dev_ioctl+0x163/0x1620 [ 3511.540640] , mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask= [ 3511.545062] ? kvm_put_kvm+0xaa0/0xaa0 [ 3511.545082] ? kvm_put_kvm+0xaa0/0xaa0 [ 3511.545097] do_vfs_ioctl+0x7ae/0x1060 [ 3511.545112] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3511.561561] 9pnet: Insufficient options for proto=fd [ 3511.563118] ? lock_downgrade+0x740/0x740 20:19:30 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) [ 3511.563137] ? ioctl_preallocate+0x1c0/0x1c0 [ 3511.563152] ? __fget+0x237/0x370 [ 3511.563173] ? security_file_ioctl+0x89/0xb0 [ 3511.563186] SyS_ioctl+0x8f/0xc0 [ 3511.568736] (null) [ 3511.571810] ? do_vfs_ioctl+0x1060/0x1060 [ 3511.571833] do_syscall_64+0x1e8/0x640 [ 3511.571844] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3511.571867] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3511.571878] RIP: 0033:0x45a6f9 [ 3511.571883] RSP: 002b:00007f5026ac1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3511.571895] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3511.571900] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3511.571906] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3511.571912] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5026ac26d4 [ 3511.571920] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3511.577431] syz-executor.2 cpuset= [ 3511.596202] 2569 [ 3511.602681] syz-executor.3: [ 3511.605046] 2569 [ 3511.608045] page allocation failure: order:5 [ 3511.611971] Node 0 DMA32 free:45676kB min:36380kB low:45472kB high:54564kB active_anon:1967312kB inactive_anon:1344kB active_file:3116kB inactive_file:15252kB unevictable:0kB writepending:276kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28756kB bounce:0kB free_pcp:336kB local_pcp:192kB free_cma:0kB [ 3511.611995] lowmem_reserve[]: 0 0 0 0 0 [ 3511.612019] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3511.612039] lowmem_reserve[]: 0 0 0 0 0 [ 3511.612063] Node 1 Normal free:93304kB min:53508kB low:66884kB high:80260kB active_anon:3337384kB inactive_anon:928kB active_file:2648kB inactive_file:448kB unevictable:0kB writepending:84kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11520kB pagetables:37344kB bounce:0kB free_pcp:340kB local_pcp:104kB free_cma:0kB [ 3511.612083] lowmem_reserve[]: 0 0 0 0 0 [ 3511.612104] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 6*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10400kB [ 3511.612195] Node 0 DMA32: 2689*4kB (UE) 1815*8kB (UME) 1039*16kB (UM) 108*32kB (UME) 5*64kB (UME) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 45676kB [ 3511.612269] Node 0 [ 3511.630762] Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3511.630818] Node 1 Normal: [ 3511.654281] 1371*4kB [ 3511.710954] , mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask= 20:19:30 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3511.779940] (UME) [ 3511.792945] syz2 [ 3511.887652] (null) [ 3511.889891] syz-executor.3 cpuset=syz3 mems_allowed=0-1 [ 3511.904751] CPU: 0 PID: 10101 Comm: syz-executor.3 Not tainted 4.14.158-syzkaller #0 [ 3511.912664] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3511.922028] Call Trace: 20:19:30 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) r1 = add_key$user(&(0x7f00000000c0)='user\x00', &(0x7f0000000000)={'syz'}, &(0x7f0000000380)='X', 0x1, 0xfffffffffffffffe) keyctl$search(0xa, r1, &(0x7f0000000200)='asymmetric\x00', &(0x7f0000000080)={'\x00\x00\xc0', 0x1}, 0x0) r2 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180)={'syz'}, &(0x7f0000000100), 0xca, 0xfffffffffffffffe) keyctl$read(0xb, r2, &(0x7f00000002c0)=""/112, 0x25) r3 = request_key(&(0x7f0000000140)='rxrpc_s\x00', &(0x7f0000000240)={'syz', 0x2}, &(0x7f0000000380)='GPL}ppp1em1mime_typevboxnet0/vmnet1posix_acl_access(security%\x1b%keyring&ppp0#eth0user^\x00', r2) r4 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180)={'syz'}, &(0x7f0000000100), 0xca, 0xfffffffffffffffe) keyctl$read(0xb, r4, &(0x7f0000000240)=""/112, 0xfffffffffffffd1b) request_key(&(0x7f00000004c0)='dns_resolver\x00', &(0x7f0000000500)={'syz', 0x0}, &(0x7f0000000540)='\x00', r4) r5 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180)={'syz'}, &(0x7f0000000100), 0xca, 0xfffffffffffffffe) keyctl$read(0xb, r5, &(0x7f0000000240)=""/112, 0xfffffffffffffd1b) request_key(&(0x7f00000004c0)='dns_resolver\x00', &(0x7f0000000500)={'syz', 0x0}, &(0x7f0000000040)='dns_resolver\x00', r5) keyctl$dh_compute(0x17, &(0x7f0000000400)={r3, r4, r5}, &(0x7f0000000480)=""/148, 0x94, &(0x7f0000000680)={&(0x7f0000000540)={'rmd128\x00'}, &(0x7f0000000580)="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", 0xfe}) r6 = add_key(&(0x7f0000000000)='id_legacy\x00', &(0x7f0000000080)={'syz', 0x1}, 0x0, 0x0, r4) keyctl$negate(0xd, r1, 0x4143, r6) [ 3511.924624] dump_stack+0x142/0x197 [ 3511.928259] warn_alloc.cold+0x96/0x1af [ 3511.932233] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3511.937090] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3511.942370] __alloc_pages_slowpath+0x23c6/0x2930 [ 3511.947230] ? save_trace+0x290/0x290 [ 3511.951043] ? warn_alloc+0xf0/0xf0 [ 3511.954686] ? __might_sleep+0x93/0xb0 [ 3511.958579] __alloc_pages_nodemask+0x62c/0x7a0 [ 3511.963251] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3511.968264] ? ____cache_alloc_node+0x1be/0x1d0 [ 3511.968277] ? cache_grow_begin+0x335/0x400 [ 3511.968295] cache_grow_begin+0x80/0x400 [ 3511.968308] ? __cpuset_node_allowed+0xff/0x450 [ 3511.968321] fallback_alloc+0x1fd/0x2c0 [ 3511.968339] ____cache_alloc_node+0x1be/0x1d0 [ 3511.968354] kmem_cache_alloc_trace+0x213/0x790 [ 3511.994479] ? debug_smp_processor_id+0x1c/0x20 [ 3512.002047] 106*8kB [ 3512.003800] ? perf_trace_lock+0x109/0x500 [ 3512.003838] kvm_dev_ioctl+0x163/0x1620 [ 3512.003858] ? kvm_put_kvm+0xaa0/0xaa0 [ 3512.003875] ? kvm_put_kvm+0xaa0/0xaa0 [ 3512.009114] encrypted_key: insufficient parameters specified [ 3512.010411] do_vfs_ioctl+0x7ae/0x1060 [ 3512.010427] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3512.010438] ? lock_downgrade+0x740/0x740 [ 3512.010451] ? ioctl_preallocate+0x1c0/0x1c0 [ 3512.010466] ? __fget+0x237/0x370 [ 3512.010487] ? security_file_ioctl+0x89/0xb0 [ 3512.010501] SyS_ioctl+0x8f/0xc0 [ 3512.010510] ? do_vfs_ioctl+0x1060/0x1060 [ 3512.010527] do_syscall_64+0x1e8/0x640 [ 3512.010537] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3512.010557] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3512.010568] RIP: 0033:0x45a6f9 [ 3512.016391] (UME) [ 3512.018415] RSP: 002b:00007ff826292c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3512.018428] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3512.018434] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3512.018440] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3512.018447] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff8262936d4 [ 3512.018453] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3512.033275] mems_allowed=0-1 [ 3512.039675] encrypted_key: insufficient parameters specified [ 3512.047920] syz-executor.0: [ 3512.053949] page allocation failure: order:5 [ 3512.105605] 2110*16kB [ 3512.112614] 9pnet: Insufficient options for proto=fd [ 3512.125091] encrypted_key: insufficient parameters specified [ 3512.153161] CPU: 0 PID: 10103 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3512.162937] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3512.172294] Call Trace: [ 3512.173102] (UE) [ 3512.174884] dump_stack+0x142/0x197 [ 3512.174906] warn_alloc.cold+0x96/0x1af [ 3512.174918] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3512.174940] ? __alloc_pages_direct_compact+0x290/0x380 [ 3512.179457] 1418*32kB [ 3512.180612] __alloc_pages_slowpath+0x23c6/0x2930 [ 3512.180637] ? save_trace+0x290/0x290 [ 3512.180658] ? warn_alloc+0xf0/0xf0 [ 3512.180684] ? __might_sleep+0x93/0xb0 [ 3512.180698] __alloc_pages_nodemask+0x62c/0x7a0 [ 3512.180711] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3512.180721] ? ____cache_alloc_node+0x1be/0x1d0 [ 3512.180732] ? cache_grow_begin+0x335/0x400 [ 3512.187007] (UMEH) [ 3512.189528] cache_grow_begin+0x80/0x400 [ 3512.189542] ? __cpuset_node_allowed+0xff/0x450 [ 3512.189556] fallback_alloc+0x1fd/0x2c0 [ 3512.189574] ____cache_alloc_node+0x1be/0x1d0 [ 3512.189587] kmem_cache_alloc_trace+0x213/0x790 [ 3512.204970] 135*64kB [ 3512.206032] ? debug_smp_processor_id+0x1c/0x20 [ 3512.206049] ? perf_trace_lock+0x109/0x500 [ 3512.206073] kvm_dev_ioctl+0x163/0x1620 [ 3512.206093] ? kvm_put_kvm+0xaa0/0xaa0 [ 3512.211992] (UMH) [ 3512.213585] ? kvm_put_kvm+0xaa0/0xaa0 [ 3512.213600] do_vfs_ioctl+0x7ae/0x1060 [ 3512.213616] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3512.213627] ? lock_downgrade+0x740/0x740 [ 3512.213640] ? ioctl_preallocate+0x1c0/0x1c0 [ 3512.220085] 1*128kB [ 3512.223293] ? __fget+0x237/0x370 [ 3512.223316] ? security_file_ioctl+0x89/0xb0 [ 3512.223332] SyS_ioctl+0x8f/0xc0 [ 3512.223343] ? do_vfs_ioctl+0x1060/0x1060 [ 3512.223360] do_syscall_64+0x1e8/0x640 [ 3512.233253] (H) [ 3512.234621] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3512.234645] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3512.234655] RIP: 0033:0x45a6f9 [ 3512.234662] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3512.234673] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3512.234681] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3512.241089] 0*256kB [ 3512.243374] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3512.243381] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3512.243388] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3512.243823] syz-executor.5: [ 3512.258779] 0*512kB [ 3512.274005] 9pnet: Insufficient options for proto=fd [ 3512.320903] 0*1024kB [ 3512.383772] , mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3512.399036] encrypted_key: insufficient parameters specified [ 3512.405784] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 3512.416883] CPU: 0 PID: 10111 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3512.417839] page allocation failure: order:5 [ 3512.424768] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3512.424774] Call Trace: [ 3512.424793] dump_stack+0x142/0x197 [ 3512.424812] warn_alloc.cold+0x96/0x1af [ 3512.424823] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3512.424844] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3512.424859] __alloc_pages_slowpath+0x23c6/0x2930 [ 3512.424882] ? save_trace+0x290/0x290 [ 3512.424899] ? warn_alloc+0xf0/0xf0 [ 3512.439021] encrypted_key: insufficient parameters specified [ 3512.441226] ? __might_sleep+0x93/0xb0 [ 3512.441243] __alloc_pages_nodemask+0x62c/0x7a0 [ 3512.441259] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3512.441270] ? ____cache_alloc_node+0x1be/0x1d0 [ 3512.441282] ? cache_grow_begin+0x335/0x400 [ 3512.441297] cache_grow_begin+0x80/0x400 [ 3512.441309] ? __cpuset_node_allowed+0xff/0x450 [ 3512.441320] fallback_alloc+0x1fd/0x2c0 [ 3512.441335] ____cache_alloc_node+0x1be/0x1d0 [ 3512.441348] kmem_cache_alloc_trace+0x213/0x790 [ 3512.441363] ? debug_smp_processor_id+0x1c/0x20 [ 3512.445498] encrypted_key: insufficient parameters specified [ 3512.448939] ? perf_trace_lock+0x109/0x500 [ 3512.448963] kvm_dev_ioctl+0x163/0x1620 [ 3512.448984] ? kvm_put_kvm+0xaa0/0xaa0 [ 3512.449001] ? kvm_put_kvm+0xaa0/0xaa0 [ 3512.462203] , mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask= [ 3512.463944] do_vfs_ioctl+0x7ae/0x1060 [ 3512.463960] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3512.463971] ? lock_downgrade+0x740/0x740 [ 3512.463983] ? ioctl_preallocate+0x1c0/0x1c0 [ 3512.472539] (null) [ 3512.477174] ? __fget+0x237/0x370 [ 3512.477197] ? security_file_ioctl+0x89/0xb0 [ 3512.477212] SyS_ioctl+0x8f/0xc0 [ 3512.502960] syz-executor.5 cpuset= [ 3512.503754] ? do_vfs_ioctl+0x1060/0x1060 [ 3512.503771] do_syscall_64+0x1e8/0x640 [ 3512.503790] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3512.522150] syz5 [ 3512.526209] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3512.555585] mems_allowed=0-1 [ 3512.557761] RIP: 0033:0x45a6f9 [ 3512.557769] RSP: 002b:00007f063534ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3512.557788] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3512.557793] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3512.557801] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3512.634311] 0*2048kB [ 3512.636382] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063534b6d4 [ 3512.636389] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3512.648355] warn_alloc_show_mem: 3 callbacks suppressed [ 3512.648360] Mem-Info: [ 3512.655237] CPU: 1 PID: 10116 Comm: syz-executor.5 Not tainted 4.14.158-syzkaller #0 [ 3512.666175] active_anon:1327348 inactive_anon:565 isolated_anon:0 [ 3512.666175] active_file:1314 inactive_file:4010 isolated_file:32 [ 3512.666175] unevictable:0 dirty:117 writeback:0 unstable:0 [ 3512.666175] slab_reclaimable:17032 slab_unreclaimable:120093 [ 3512.666175] mapped:56458 shmem:7462 pagetables:16563 bounce:0 [ 3512.666175] free:37199 free_pcp:282 free_cma:0 [ 3512.666339] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3512.672917] Node 0 active_anon:1972032kB inactive_anon:1348kB active_file:3196kB inactive_file:15296kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:223004kB dirty:364kB writeback:0kB shmem:11984kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3512.676600] Call Trace: [ 3512.676622] dump_stack+0x142/0x197 [ 3512.676643] warn_alloc.cold+0x96/0x1af [ 3512.676669] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3512.715011] Node 1 active_anon:3337360kB inactive_anon:912kB active_file:2060kB inactive_file:744kB unevictable:0kB isolated(anon):0kB isolated(file):128kB mapped:2828kB dirty:104kB writeback:0kB shmem:17864kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3512.720088] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3512.720103] __alloc_pages_slowpath+0x23c6/0x2930 [ 3512.720127] ? save_trace+0x290/0x290 [ 3512.720144] ? warn_alloc+0xf0/0xf0 [ 3512.749270] Node 0 [ 3512.751182] ? __might_sleep+0x93/0xb0 [ 3512.751199] __alloc_pages_nodemask+0x62c/0x7a0 [ 3512.751214] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3512.751227] ? ____cache_alloc_node+0x1be/0x1d0 [ 3512.751237] ? cache_grow_begin+0x335/0x400 [ 3512.751251] cache_grow_begin+0x80/0x400 [ 3512.751263] ? __cpuset_node_allowed+0xff/0x450 [ 3512.751275] fallback_alloc+0x1fd/0x2c0 [ 3512.755028] DMA free:10400kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3512.758877] ____cache_alloc_node+0x1be/0x1d0 [ 3512.758894] kmem_cache_alloc_trace+0x213/0x790 [ 3512.758904] ? debug_smp_processor_id+0x1c/0x20 [ 3512.758917] ? perf_trace_lock+0x109/0x500 [ 3512.764556] lowmem_reserve[]: [ 3512.791789] kvm_dev_ioctl+0x163/0x1620 [ 3512.791811] ? kvm_put_kvm+0xaa0/0xaa0 [ 3512.791833] ? kvm_put_kvm+0xaa0/0xaa0 [ 3512.791846] do_vfs_ioctl+0x7ae/0x1060 [ 3512.791861] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3512.791879] ? lock_downgrade+0x740/0x740 [ 3512.797316] 0 [ 3512.801967] ? ioctl_preallocate+0x1c0/0x1c0 [ 3512.801982] ? __fget+0x237/0x370 [ 3512.802003] ? security_file_ioctl+0x89/0xb0 [ 3512.802016] SyS_ioctl+0x8f/0xc0 [ 3512.802026] ? do_vfs_ioctl+0x1060/0x1060 [ 3512.802042] do_syscall_64+0x1e8/0x640 [ 3512.806483] 2569 [ 3512.809428] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3512.809451] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3512.809460] RIP: 0033:0x45a6f9 [ 3512.809468] RSP: 002b:00007f5026ac1c78 EFLAGS: 00000246 [ 3512.811980] 2569 [ 3512.815714] ORIG_RAX: 0000000000000010 [ 3512.815722] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3512.815727] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3512.815733] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3512.815739] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5026ac26d4 [ 3512.815744] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3512.827719] 0*4096kB [ 3512.847485] = 94236kB [ 3512.963881] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3512.967925] 2569 [ 3512.978754] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3512.980595] 2569 [ 3512.994715] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3513.004768] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3513.009591] Node 0 [ 3513.017436] 12893 total pagecache pages [ 3513.024205] DMA32 free:45416kB min:36380kB low:45472kB high:54564kB active_anon:1967384kB inactive_anon:1348kB active_file:3196kB inactive_file:15496kB unevictable:0kB writepending:364kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28584kB bounce:0kB free_pcp:832kB local_pcp:492kB free_cma:0kB [ 3513.028080] 0 pages in swap cache [ 3513.040152] lowmem_reserve[]: [ 3513.055539] Swap cache stats: add 0, delete 0, find 0/0 [ 3513.062322] 0 [ 3513.114086] Free swap = 0kB [ 3513.119005] Total swap = 0kB [ 3513.122843] 1965979 pages RAM [ 3513.129913] 0 pages HighMem/MovableOnly [ 3513.130996] 0 0 0 0 [ 3513.137083] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3513.146248] 335858 pages reserved 20:19:31 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) lsetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)=@known='com.apple.system.Security\x00', &(0x7f00000000c0)='bdev\x00', 0x5, 0x2) r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000100)='/dev/hwrng\x00', 0x20000, 0x0) r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000180)='TIPCv2\x00') sendmsg$TIPC_NL_NET_SET(r1, &(0x7f00000002c0)={&(0x7f0000000140), 0xc, &(0x7f0000000280)={&(0x7f00000001c0)={0xa8, r2, 0x300, 0x70bd2c, 0x25dfdbfc, {}, [@TIPC_NLA_NET={0x4c, 0x7, [@TIPC_NLA_NET_ID={0x8, 0x1, 0xffff0000}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x5c}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0x3f1}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x3}, @TIPC_NLA_NET_NODEID={0xc, 0x3, 0xf848}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x9}]}, @TIPC_NLA_NET={0x48, 0x7, [@TIPC_NLA_NET_ADDR={0x8, 0x2, 0x1000}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x4}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x3}, @TIPC_NLA_NET_ADDR={0x8, 0x2, 0x3}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x1f00000}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x5978}, @TIPC_NLA_NET_NODEID_W1={0xc, 0x4, 0x1}, @TIPC_NLA_NET_ID={0x8, 0x1, 0x3a}]}]}, 0xa8}, 0x1, 0x0, 0x0, 0x40041}, 0x14000) 20:19:31 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:31 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) 20:19:31 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:31 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX]) [ 3513.191699] lowmem_reserve[]: 0 0 0 0 0 [ 3513.196333] 0 pages cma reserved [ 3513.196662] Node 1 Normal free:94268kB min:53508kB low:66884kB high:80260kB active_anon:3337300kB inactive_anon:908kB active_file:2616kB inactive_file:456kB unevictable:0kB writepending:100kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11200kB pagetables:37420kB bounce:0kB free_pcp:620kB local_pcp:112kB free_cma:0kB [ 3513.250754] lowmem_reserve[]: 0 0 0 0 0 [ 3513.270473] Node 0 DMA: 12*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 6*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10400kB 20:19:31 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) read(0xffffffffffffffff, &(0x7f0000000080)=""/218, 0xda) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) [ 3513.347812] Node 0 DMA32: 2741*4kB (UE) 1819*8kB (UME) 1000*16kB (UM) 108*32kB (UME) 6*64kB (UME) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 45356kB [ 3513.405981] 9pnet: Insufficient options for proto=fd [ 3513.407367] 9pnet: Insufficient options for proto=fd [ 3513.442778] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3513.452716] 9pnet: Insufficient options for proto=fd [ 3513.471640] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3513.507093] Node 1 Normal: 1385*4kB (UME) 221*8kB (UME) 1968*16kB (UE) 1411*32kB (UMEH) 140*64kB (UMH) 1*128kB (H) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 93036kB [ 3513.517762] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 3513.563869] CPU: 1 PID: 10144 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3513.571891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3513.571896] Call Trace: [ 3513.571916] dump_stack+0x142/0x197 [ 3513.571936] warn_alloc.cold+0x96/0x1af [ 3513.571947] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3513.571967] ? __alloc_pages_direct_compact+0x290/0x380 [ 3513.571980] __alloc_pages_slowpath+0x23c6/0x2930 [ 3513.572001] ? save_trace+0x290/0x290 [ 3513.593089] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3513.596386] ? warn_alloc+0xf0/0xf0 [ 3513.596412] ? __might_sleep+0x93/0xb0 [ 3513.606613] __alloc_pages_nodemask+0x62c/0x7a0 [ 3513.606630] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3513.606644] ? ____cache_alloc_node+0x1be/0x1d0 [ 3513.606657] ? cache_grow_begin+0x335/0x400 [ 3513.610635] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3513.619272] cache_grow_begin+0x80/0x400 [ 3513.619287] ? __cpuset_node_allowed+0xff/0x450 [ 3513.619301] fallback_alloc+0x1fd/0x2c0 [ 3513.619318] ____cache_alloc_node+0x1be/0x1d0 [ 3513.632988] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3513.636501] kmem_cache_alloc_trace+0x213/0x790 [ 3513.636513] ? debug_smp_processor_id+0x1c/0x20 [ 3513.636527] ? perf_trace_lock+0x109/0x500 [ 3513.636548] kvm_dev_ioctl+0x163/0x1620 [ 3513.651880] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3513.654102] ? kvm_put_kvm+0xaa0/0xaa0 [ 3513.654125] ? kvm_put_kvm+0xaa0/0xaa0 [ 3513.660641] 13003 total pagecache pages [ 3513.662835] do_vfs_ioctl+0x7ae/0x1060 [ 3513.662853] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3513.662867] ? lock_downgrade+0x740/0x740 [ 3513.662881] ? ioctl_preallocate+0x1c0/0x1c0 [ 3513.669276] 0 pages in swap cache [ 3513.671332] ? __fget+0x237/0x370 [ 3513.671355] ? security_file_ioctl+0x89/0xb0 [ 3513.671375] SyS_ioctl+0x8f/0xc0 [ 3513.671389] ? do_vfs_ioctl+0x1060/0x1060 [ 3513.682522] Swap cache stats: add 0, delete 0, find 0/0 [ 3513.684894] do_syscall_64+0x1e8/0x640 [ 3513.684907] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3513.684928] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3513.684939] RIP: 0033:0x45a6f9 [ 3513.689793] Free swap = 0kB [ 3513.693847] RSP: 002b:00007f2bca452c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3513.693859] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3513.693864] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3513.693869] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 20:19:32 executing program 1: r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSETKEYCODE(r0, 0x4b4d, &(0x7f0000000040)) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f00000000c0)={0x5, [0x0, 0x0, 0x0, 0x0, 0x0]}, &(0x7f0000000100)=0x18) r4 = dup(r1) keyctl$session_to_parent(0x12) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KVM_SET_SIGNAL_MASK(r4, 0x4004ae8b, &(0x7f0000000140)=ANY=[@ANYBLOB="c24d2e23681105790bdf90f75fb645c8e2abc759dd44107d8243f382584ff2b920eb2fc67e9b594706d3bca5a7e8dd306e09ca65e4d4cd2b4ca44f3826358cc0b7651ee9492888a0cb9e0bd2f46f39c7ffdee148f3bb71bc1ca4032261b7befabe0c5afb08443d66402d7864ca3d4e2bad33222984ccafb113"]) 20:19:32 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r5, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r6, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB="2c6163636573733d06"]) [ 3513.693875] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4536d4 [ 3513.693881] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3513.824824] Total swap = 0kB [ 3513.827947] 1965979 pages RAM [ 3513.844099] 0 pages HighMem/MovableOnly [ 3513.852133] 335858 pages reserved [ 3513.870293] 0 pages cma reserved 20:19:32 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:32 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3513.899809] syz-executor.0: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3513.962845] 9pnet: Insufficient options for proto=fd 20:19:32 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3513.994514] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 3514.005711] 9pnet: Insufficient options for proto=fd [ 3514.044010] CPU: 0 PID: 10157 Comm: syz-executor.0 Not tainted 4.14.158-syzkaller #0 [ 3514.051972] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3514.061340] Call Trace: [ 3514.063935] dump_stack+0x142/0x197 [ 3514.063960] warn_alloc.cold+0x96/0x1af [ 3514.063973] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3514.063999] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3514.071579] __alloc_pages_slowpath+0x23c6/0x2930 [ 3514.071603] ? save_trace+0x290/0x290 [ 3514.071623] ? warn_alloc+0xf0/0xf0 [ 3514.071654] ? __might_sleep+0x93/0xb0 [ 3514.071666] __alloc_pages_nodemask+0x62c/0x7a0 [ 3514.071680] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3514.071693] ? ____cache_alloc_node+0x1be/0x1d0 [ 3514.071703] ? cache_grow_begin+0x335/0x400 [ 3514.071718] cache_grow_begin+0x80/0x400 [ 3514.071729] ? __cpuset_node_allowed+0xff/0x450 [ 3514.071740] fallback_alloc+0x1fd/0x2c0 [ 3514.071755] ____cache_alloc_node+0x1be/0x1d0 [ 3514.133790] kmem_cache_alloc_trace+0x213/0x790 [ 3514.138469] ? debug_smp_processor_id+0x1c/0x20 [ 3514.139399] warn_alloc_show_mem: 3 callbacks suppressed [ 3514.139403] Mem-Info: [ 3514.143140] ? perf_trace_lock+0x109/0x500 [ 3514.143163] kvm_dev_ioctl+0x163/0x1620 [ 3514.143183] ? kvm_put_kvm+0xaa0/0xaa0 [ 3514.143203] ? kvm_put_kvm+0xaa0/0xaa0 [ 3514.143217] do_vfs_ioctl+0x7ae/0x1060 [ 3514.143231] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3514.143239] ? lock_downgrade+0x740/0x740 [ 3514.143251] ? ioctl_preallocate+0x1c0/0x1c0 [ 3514.143267] ? __fget+0x237/0x370 [ 3514.153252] active_anon:1327277 inactive_anon:568 isolated_anon:24 20:19:32 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3514.153252] active_file:1516 inactive_file:4013 isolated_file:32 [ 3514.153252] unevictable:0 dirty:81 writeback:0 unstable:0 [ 3514.153252] slab_reclaimable:16959 slab_unreclaimable:119862 [ 3514.153252] mapped:56474 shmem:7463 pagetables:16478 bounce:0 [ 3514.153252] free:37421 free_pcp:252 free_cma:0 [ 3514.155259] ? security_file_ioctl+0x89/0xb0 [ 3514.155279] SyS_ioctl+0x8f/0xc0 [ 3514.155292] ? do_vfs_ioctl+0x1060/0x1060 [ 3514.161905] Node 0 active_anon:1971688kB inactive_anon:1344kB active_file:3520kB inactive_file:15852kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:223244kB dirty:264kB writeback:0kB shmem:11972kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3514.163134] do_syscall_64+0x1e8/0x640 [ 3514.163146] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3514.163167] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3514.163178] RIP: 0033:0x45a6f9 [ 3514.169467] Node 1 active_anon:3337420kB inactive_anon:928kB active_file:2544kB inactive_file:200kB unevictable:0kB isolated(anon):96kB isolated(file):128kB mapped:2652kB dirty:60kB writeback:0kB shmem:17880kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3514.170916] RSP: 002b:00007f063534ac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3514.170928] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3514.170934] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000008 [ 3514.170939] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3514.170945] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f063534b6d4 [ 3514.170952] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3514.305138] 9pnet: Insufficient options for proto=fd [ 3514.427660] 9pnet: Insufficient options for proto=fd [ 3514.625256] Node 0 DMA free:10400kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3514.657343] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3514.663808] Node 0 DMA32 free:46060kB min:36380kB low:45472kB high:54564kB active_anon:1967180kB inactive_anon:1332kB active_file:3584kB inactive_file:15804kB unevictable:0kB writepending:284kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28348kB bounce:0kB free_pcp:1204kB local_pcp:552kB free_cma:0kB [ 3514.700629] lowmem_reserve[]: 0 0 0 0 0 [ 3514.705910] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3514.731410] lowmem_reserve[]: 0 0 0 0 0 [ 3514.735433] Node 1 Normal free:92424kB min:53508kB low:66884kB high:80260kB active_anon:3337200kB inactive_anon:924kB active_file:2208kB inactive_file:324kB unevictable:0kB writepending:88kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11136kB pagetables:37432kB bounce:0kB free_pcp:1128kB local_pcp:496kB free_cma:0kB [ 3514.765273] lowmem_reserve[]: 0 0 0 0 0 [ 3514.769270] Node 0 DMA: 13*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 6*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10404kB [ 3514.785900] Node 0 DMA32: 2916*4kB (UME) 1849*8kB (UME) 970*16kB (UM) 110*32kB (UME) 5*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 45944kB [ 3514.801243] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3514.812036] Node 1 Normal: 1348*4kB (UME) 38*8kB (ME) 1951*16kB (UME) 1435*32kB (UEH) 142*64kB (UMH) 1*128kB (H) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 92048kB [ 3514.827642] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3514.836518] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3514.845171] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3514.854134] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3514.862797] 13074 total pagecache pages [ 3514.866773] 0 pages in swap cache [ 3514.870283] Swap cache stats: add 0, delete 0, find 0/0 20:19:33 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB]) 20:19:33 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:33 executing program 0: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41ba, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = perf_event_open(&(0x7f0000000440)={0x2, 0x70, 0xb8, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = memfd_create(&(0x7f0000000000)='@\x00', 0x4) dup3(r0, r1, 0x80000) dup2(0xffffffffffffffff, 0xffffffffffffffff) socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet_udp_int(0xffffffffffffffff, 0x11, 0x0, 0x0, 0x0) setsockopt$inet_udp_int(0xffffffffffffffff, 0x11, 0x0, 0x0, 0x0) 20:19:33 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:33 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) accept$packet(r1, 0x0, &(0x7f00000001c0)) syz_open_dev$tty1(0xc, 0x4, 0x2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$VIDIOC_ENUM_FREQ_BANDS(r5, 0xc0405665, &(0x7f00000003c0)={0x1000000, 0x1, 0x7a1, 0x1b92, 0x7fff, 0x1, 0x4}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) setsockopt$packet_fanout(r7, 0x107, 0x12, &(0x7f0000000200)={0x89df, 0x0, 0x8000}, 0x4) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r8 = syz_open_dev$media(&(0x7f0000000000)='/dev/media#\x00', 0x6, 0xa0bb0c037c23bc42) ioctl$TCSETX(r8, 0x5433, &(0x7f00000000c0)={0x2, 0x1, [0x3, 0x0, 0xa7, 0x200, 0xa1f3], 0xee}) ioctl$KDSETKEYCODE(0xffffffffffffffff, 0x4b4d, &(0x7f0000000040)={0xc68, 0x4}) r9 = socket$inet_sctp(0x2, 0x1, 0x84) r10 = socket$inet6(0xa, 0x80000, 0x40) accept4$inet6(r10, &(0x7f0000000280)={0xa, 0x0, 0x0, @mcast2}, &(0x7f0000000300)=0x1c, 0xfac8fbc7b8f1ca26) write$P9_RWRITE(0xffffffffffffffff, &(0x7f0000000380)={0xb, 0x77, 0x1, 0x1}, 0xb) r11 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f0000000240)='/dev/dlm_plock\x00', 0x40000, 0x0) socket$inet_sctp(0x2, 0x5, 0x84) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r3, 0x84, 0x1d, &(0x7f0000000340)=ANY=[@ANYBLOB="0100fb4a", @ANYRES32=0xffffffffffffffff], &(0x7f0000a8a000)=0x2) setsockopt$inet_sctp6_SCTP_MAXSEG(r11, 0x84, 0xd, &(0x7f00000002c0)=@assoc_id=r12, 0x4) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(0xffffffffffffffff, 0x84, 0x9, &(0x7f0000000540)={r12, @in6={{0xa, 0x0, 0x101, @mcast1, 0x7fffffff}}, 0x800, 0x8000, 0x6, 0x7fffffff, 0x4c}, &(0x7f0000000100)=0x98) getsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, &(0x7f0000000100)={r12, 0x3f0d}, &(0x7f0000000140)=0x8) setsockopt$inet_sctp_SCTP_STREAM_SCHEDULER(r9, 0x84, 0x7b, &(0x7f0000000180)={r13, 0x101}, 0x8) 20:19:33 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3514.875641] Free swap = 0kB [ 3514.878641] Total swap = 0kB [ 3514.881730] 1965979 pages RAM [ 3514.884830] 0 pages HighMem/MovableOnly [ 3514.888791] 335858 pages reserved [ 3514.892278] 0 pages cma reserved 20:19:33 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:33 executing program 1: socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$GIO_FONTX(r2, 0x4b6b, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000100)}) [ 3514.963992] 9pnet: Insufficient options for proto=fd [ 3514.980759] 9pnet: Insufficient options for proto=fd 20:19:33 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:33 executing program 0: mkdir(&(0x7f0000000000)='./file0\x00', 0x0) mount$bpf(0x20000000, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2001001, 0x0) perf_event_open(&(0x7f0000000280)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x20, 0x0, 0x0, 0x3}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pivot_root(&(0x7f0000000140)='./file0\x00', &(0x7f0000000100)='./file0\x00') writev(0xffffffffffffffff, &(0x7f0000000040), 0x0) unshare(0x40000000) setsockopt$inet_opts(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) openat$selinux_attr(0xffffffffffffff9c, &(0x7f0000000040)='/proc/thread-self/attr/exec\x00', 0x2, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x64, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x0, 0xfffffffffffffffd}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x300000a, 0x8031, 0xffffffffffffffff, 0x0) r0 = open(&(0x7f0000000500)='./file0\x00', 0x0, 0x88) ioctl$USBDEVFS_GETDRIVER(r0, 0x41045508, 0x0) r1 = socket$inet6_sctp(0xa, 0x10000000005, 0x84) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(r1, 0x84, 0x6e, &(0x7f0000000180)=[@in6={0xa, 0x0, 0x0, @remote}], 0x1c) getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f00000003c0)={0x0, 0x0, 0x10}, &(0x7f0000000400)=0xc) r2 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r2) ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000001700)={0x98, 0x0, &(0x7f0000000640)=[@transaction={0x40406300, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000480)={@fda={0x66646185, 0x6, 0x1, 0x1c}, @ptr={0x70742a85, 0x0, &(0x7f00000003c0)=""/192, 0xc0, 0x0, 0x34}, @fda={0x66646185, 0x0, 0x0, 0x10}}, &(0x7f0000000240)={0x0, 0x20, 0x48}}}, @clear_death, @reply={0x40406301, {0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x58, 0x0, &(0x7f00000005c0)={@fd, @fd, @ptr={0x70742a85, 0x1, 0x0}}, 0x0}}], 0x0, 0x0, 0x0}) ioctl$TIOCSSOFTCAR(r2, 0x541a, &(0x7f0000000080)=0x7) bind$rose(r0, &(0x7f0000000180)=@short={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, 0x1, @bcast}, 0x1c) 20:19:33 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3515.096245] 9pnet: Insufficient options for proto=fd 20:19:33 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB]) [ 3515.230626] 9pnet: Insufficient options for proto=fd [ 3515.278923] 9pnet: Insufficient options for proto=fd 20:19:33 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:33 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3515.432115] 9pnet: Insufficient options for proto=fd [ 3515.475667] warn_alloc: 5 callbacks suppressed [ 3515.475675] syz-executor.1: [ 3515.476988] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3515.513367] page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3515.524050] syz-executor.5: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3515.524756] IPVS: ftp: loaded support on port[0] = 21 [ 3515.546592] syz-executor.2: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3515.561917] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 3515.569924] 9pnet: Insufficient options for proto=fd [ 3515.573174] syz-executor.5 cpuset= [ 3515.582564] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 3515.591618] syz5 mems_allowed=0-1 [ 3515.597632] syz-executor.2 cpuset=syz2 mems_allowed=0-1 [ 3515.605621] CPU: 0 PID: 10222 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3515.613516] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3515.622868] Call Trace: [ 3515.625458] dump_stack+0x142/0x197 [ 3515.629083] warn_alloc.cold+0x96/0x1af [ 3515.633054] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3515.637912] ? __alloc_pages_direct_compact+0x290/0x380 [ 3515.643281] __alloc_pages_slowpath+0x23c6/0x2930 [ 3515.648139] ? save_trace+0x290/0x290 [ 3515.651945] ? warn_alloc+0xf0/0xf0 [ 3515.655583] ? __might_sleep+0x93/0xb0 [ 3515.659483] __alloc_pages_nodemask+0x62c/0x7a0 [ 3515.664168] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3515.669194] ? ____cache_alloc_node+0x1be/0x1d0 [ 3515.673867] ? cache_grow_begin+0x335/0x400 [ 3515.678193] cache_grow_begin+0x80/0x400 [ 3515.682269] ? __cpuset_node_allowed+0xff/0x450 [ 3515.686957] fallback_alloc+0x1fd/0x2c0 [ 3515.690940] ____cache_alloc_node+0x1be/0x1d0 [ 3515.695435] kmem_cache_alloc_trace+0x213/0x790 [ 3515.700105] ? debug_smp_processor_id+0x1c/0x20 [ 3515.704792] ? perf_trace_lock+0x109/0x500 [ 3515.709058] kvm_dev_ioctl+0x163/0x1620 [ 3515.713046] ? kvm_put_kvm+0xaa0/0xaa0 [ 3515.716966] ? kvm_put_kvm+0xaa0/0xaa0 [ 3515.720853] do_vfs_ioctl+0x7ae/0x1060 [ 3515.724736] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3515.729585] ? lock_downgrade+0x740/0x740 [ 3515.733725] ? ioctl_preallocate+0x1c0/0x1c0 [ 3515.738128] ? __fget+0x237/0x370 [ 3515.741598] ? security_file_ioctl+0x89/0xb0 [ 3515.746011] SyS_ioctl+0x8f/0xc0 [ 3515.749392] ? do_vfs_ioctl+0x1060/0x1060 [ 3515.753553] do_syscall_64+0x1e8/0x640 [ 3515.757436] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3515.762280] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3515.767467] RIP: 0033:0x45a6f9 [ 3515.770646] RSP: 002b:00007f2bca452c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3515.778442] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3515.785712] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3515.792969] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3515.800243] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4536d4 [ 3515.807501] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3515.818761] CPU: 0 PID: 10230 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3515.826713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3515.836084] Call Trace: [ 3515.838692] dump_stack+0x142/0x197 [ 3515.842340] warn_alloc.cold+0x96/0x1af [ 3515.846322] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3515.851188] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3515.856647] __alloc_pages_slowpath+0x23c6/0x2930 [ 3515.861506] ? save_trace+0x290/0x290 [ 3515.865321] ? warn_alloc+0xf0/0xf0 [ 3515.868972] ? __might_sleep+0x93/0xb0 [ 3515.872864] __alloc_pages_nodemask+0x62c/0x7a0 [ 3515.877564] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3515.882578] ? ____cache_alloc_node+0x1be/0x1d0 [ 3515.887253] ? cache_grow_begin+0x335/0x400 [ 3515.891586] cache_grow_begin+0x80/0x400 [ 3515.895660] ? __cpuset_node_allowed+0xff/0x450 [ 3515.900337] fallback_alloc+0x1fd/0x2c0 [ 3515.904327] ____cache_alloc_node+0x1be/0x1d0 [ 3515.908833] kmem_cache_alloc_trace+0x213/0x790 [ 3515.913504] ? debug_smp_processor_id+0x1c/0x20 [ 3515.918171] ? perf_trace_lock+0x109/0x500 [ 3515.922416] kvm_dev_ioctl+0x163/0x1620 [ 3515.926395] ? kvm_put_kvm+0xaa0/0xaa0 [ 3515.930291] ? kvm_put_kvm+0xaa0/0xaa0 [ 3515.934190] do_vfs_ioctl+0x7ae/0x1060 [ 3515.938084] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3515.942847] ? lock_downgrade+0x740/0x740 [ 3515.947003] ? ioctl_preallocate+0x1c0/0x1c0 [ 3515.951419] ? __fget+0x237/0x370 [ 3515.954885] ? security_file_ioctl+0x89/0xb0 [ 3515.959302] SyS_ioctl+0x8f/0xc0 [ 3515.962672] ? do_vfs_ioctl+0x1060/0x1060 [ 3515.966843] do_syscall_64+0x1e8/0x640 [ 3515.970757] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3515.975612] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3515.980816] RIP: 0033:0x45a6f9 [ 3515.984001] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3515.991788] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3515.999054] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3516.006323] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3516.013597] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3516.020886] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3516.028371] CPU: 1 PID: 10227 Comm: syz-executor.1 Not tainted 4.14.158-syzkaller #0 [ 3516.036385] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3516.045749] Call Trace: [ 3516.048360] dump_stack+0x142/0x197 [ 3516.052013] warn_alloc.cold+0x96/0x1af [ 3516.055996] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3516.060857] ? __alloc_pages_direct_compact+0x290/0x380 [ 3516.066230] __alloc_pages_slowpath+0x23c6/0x2930 [ 3516.071094] ? save_trace+0x290/0x290 [ 3516.074909] ? warn_alloc+0xf0/0xf0 [ 3516.078557] ? __might_sleep+0x93/0xb0 [ 3516.082453] __alloc_pages_nodemask+0x62c/0x7a0 [ 3516.087131] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3516.092153] ? ____cache_alloc_node+0x1be/0x1d0 [ 3516.096931] ? cache_grow_begin+0x335/0x400 [ 3516.101290] cache_grow_begin+0x80/0x400 [ 3516.105394] ? __cpuset_node_allowed+0xff/0x450 [ 3516.110072] fallback_alloc+0x1fd/0x2c0 [ 3516.114138] ____cache_alloc_node+0x1be/0x1d0 [ 3516.118644] kmem_cache_alloc_trace+0x213/0x790 [ 3516.123321] ? SOFTIRQ_verbose+0x10/0x10 [ 3516.127390] ? __might_fault+0x110/0x1d0 [ 3516.131522] con_font_op+0x119/0x1060 [ 3516.135343] ? con_write+0xc0/0xc0 [ 3516.138924] ? kasan_check_write+0x14/0x20 [ 3516.143171] ? _copy_from_user+0x99/0x110 [ 3516.147326] vt_ioctl+0x1b72/0x2170 [ 3516.150988] ? avc_has_extended_perms+0x8ec/0xe40 [ 3516.156006] ? futex_wake+0x134/0x430 [ 3516.159812] ? complete_change_console+0x360/0x360 [ 3516.164752] ? avc_ss_reset+0x110/0x110 [ 3516.168787] ? tty_jobctrl_ioctl+0x44/0xc10 [ 3516.173119] ? complete_change_console+0x360/0x360 [ 3516.178088] tty_ioctl+0x841/0x1320 [ 3516.181718] ? tty_vhangup+0x30/0x30 [ 3516.185429] ? perf_trace_lock+0x109/0x500 [ 3516.189658] ? __might_sleep+0x93/0xb0 [ 3516.193534] ? __fget+0x210/0x370 [ 3516.196986] ? tty_vhangup+0x30/0x30 [ 3516.200694] do_vfs_ioctl+0x7ae/0x1060 [ 3516.204573] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3516.209317] ? lock_downgrade+0x740/0x740 [ 3516.213453] ? ioctl_preallocate+0x1c0/0x1c0 [ 3516.217855] ? __fget+0x237/0x370 [ 3516.221306] ? security_file_ioctl+0x89/0xb0 [ 3516.225704] SyS_ioctl+0x8f/0xc0 [ 3516.229074] ? do_vfs_ioctl+0x1060/0x1060 [ 3516.233212] do_syscall_64+0x1e8/0x640 [ 3516.237094] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3516.241944] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3516.247151] RIP: 0033:0x45a6f9 [ 3516.250437] RSP: 002b:00007f306a523c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3516.258139] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3516.265398] RDX: 0000000020000500 RSI: 0000000000004b6b RDI: 0000000000000006 [ 3516.272661] RBP: 000000000075bfc8 R08: 0000000000000000 R09: 0000000000000000 [ 3516.280021] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f306a5246d4 [ 3516.287288] R13: 00000000004c334b R14: 00000000004d8748 R15: 00000000ffffffff [ 3516.297718] warn_alloc_show_mem: 1 callbacks suppressed [ 3516.297722] Mem-Info: [ 3516.303804] CPU: 1 PID: 10229 Comm: syz-executor.5 Not tainted 4.14.158-syzkaller #0 [ 3516.313723] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3516.323078] Call Trace: [ 3516.325462] active_anon:1327347 inactive_anon:3434 isolated_anon:0 [ 3516.325462] active_file:1567 inactive_file:4052 isolated_file:32 [ 3516.325462] unevictable:0 dirty:119 writeback:34 unstable:0 [ 3516.325462] slab_reclaimable:16862 slab_unreclaimable:120301 [ 3516.325462] mapped:59339 shmem:10332 pagetables:16568 bounce:0 [ 3516.325462] free:34186 free_pcp:91 free_cma:0 [ 3516.325679] dump_stack+0x142/0x197 [ 3516.363587] warn_alloc.cold+0x96/0x1af [ 3516.367568] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3516.372426] ? __alloc_pages_direct_compact+0x290/0x380 [ 3516.377794] __alloc_pages_slowpath+0x23c6/0x2930 [ 3516.382638] ? save_trace+0x290/0x290 [ 3516.386427] ? warn_alloc+0xf0/0xf0 [ 3516.390054] ? __might_sleep+0x93/0xb0 [ 3516.394136] __alloc_pages_nodemask+0x62c/0x7a0 [ 3516.398812] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3516.403817] ? ____cache_alloc_node+0x1be/0x1d0 [ 3516.408477] ? cache_grow_begin+0x335/0x400 [ 3516.412797] cache_grow_begin+0x80/0x400 [ 3516.416868] ? __cpuset_node_allowed+0xff/0x450 [ 3516.421528] fallback_alloc+0x1fd/0x2c0 [ 3516.425492] ____cache_alloc_node+0x1be/0x1d0 [ 3516.429976] kmem_cache_alloc_trace+0x213/0x790 [ 3516.434630] ? debug_smp_processor_id+0x1c/0x20 [ 3516.439294] ? perf_trace_lock+0x109/0x500 [ 3516.443521] kvm_dev_ioctl+0x163/0x1620 [ 3516.447483] ? kvm_put_kvm+0xaa0/0xaa0 [ 3516.451360] ? kvm_put_kvm+0xaa0/0xaa0 [ 3516.455233] do_vfs_ioctl+0x7ae/0x1060 [ 3516.459109] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3516.463847] ? lock_downgrade+0x740/0x740 [ 3516.467980] ? ioctl_preallocate+0x1c0/0x1c0 [ 3516.472376] ? __fget+0x237/0x370 [ 3516.475823] ? security_file_ioctl+0x89/0xb0 [ 3516.480218] SyS_ioctl+0x8f/0xc0 [ 3516.483567] ? do_vfs_ioctl+0x1060/0x1060 [ 3516.487701] do_syscall_64+0x1e8/0x640 [ 3516.491659] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3516.496516] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3516.503090] RIP: 0033:0x45a6f9 [ 3516.506270] RSP: 002b:00007f5026ac1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3516.513976] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3516.521230] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3516.528495] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3516.535756] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5026ac26d4 [ 3516.543010] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff 20:19:34 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3516.558778] Node 0 active_anon:1971928kB inactive_anon:2656kB active_file:4144kB inactive_file:15940kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:224808kB dirty:180kB writeback:88kB shmem:13284kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes 20:19:35 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3516.608836] Node 1 active_anon:3337360kB inactive_anon:11080kB active_file:2004kB inactive_file:468kB unevictable:0kB isolated(anon):0kB isolated(file):124kB mapped:12548kB dirty:96kB writeback:48kB shmem:28044kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 20:19:35 executing program 1: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ttyS3\x00', 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='stat\t\xc0\xd2\xfe\xbc\xf9\xdf-\xea\xc8\xc1w\xff\x17\x12H\xe9\x11\x93Q0I\xf81U\ro}\xe6l\xf67\xbd\xbf\x13\x11\x92\f\x8a&\xed\xa4\xdc\xc3x?\x9d\xb5\x11k4\xd3\x1b\x05\x12\xa5`\x8a\xaf\xf0\x1eyR4\f\xd6\xfd\x00\x00\x00\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f0000002840)=ANY=[@ANYBLOB="3f2a273c09aa4559b3"], 0x9) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0) ioctl$TCSETS2(r0, 0x402c542b, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "54b097c6f26d9cdd209f754aed7506cdf7c917"}) [ 3516.645014] Node 0 DMA free:10404kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3516.681716] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3516.686811] Node 0 DMA32 free:45376kB min:36380kB low:45472kB high:54564kB active_anon:1967180kB inactive_anon:2656kB active_file:4144kB inactive_file:15940kB unevictable:0kB writepending:320kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28500kB bounce:0kB free_pcp:732kB local_pcp:12kB free_cma:0kB [ 3516.723390] lowmem_reserve[]: 0 0 0 0 0 [ 3516.727433] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3516.759979] lowmem_reserve[]: 0 0 0 0 0 [ 3516.764107] Node 1 Normal free:81972kB min:53508kB low:66884kB high:80260kB active_anon:3337460kB inactive_anon:11080kB active_file:2264kB inactive_file:268kB unevictable:0kB writepending:144kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11456kB pagetables:37476kB bounce:0kB free_pcp:740kB local_pcp:120kB free_cma:0kB [ 3516.800828] lowmem_reserve[]: 0 0 0 0 0 20:19:35 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3516.834458] Node 0 DMA: 13*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 6*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10404kB [ 3516.868062] Node 0 DMA32: 3148*4kB (UME) 1887*8kB (UME) 917*16kB (UM) 88*32kB (UME) 5*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 45624kB [ 3516.956561] syz-executor.3: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3516.977191] syz-executor.5: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3516.985300] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3517.018539] syz-executor.5 cpuset=syz5 mems_allowed=0-1 [ 3517.020908] syz-executor.3 cpuset= [ 3517.028207] 9pnet: Insufficient options for proto=fd [ 3517.031089] syz3 [ 3517.042955] CPU: 1 PID: 10248 Comm: syz-executor.5 Not tainted 4.14.158-syzkaller #0 [ 3517.048916] Node 1 [ 3517.053060] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3517.053069] Call Trace: [ 3517.053095] dump_stack+0x142/0x197 [ 3517.053117] warn_alloc.cold+0x96/0x1af [ 3517.053130] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3517.053154] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3517.057860] mems_allowed=0-1 [ 3517.064745] __alloc_pages_slowpath+0x23c6/0x2930 [ 3517.064776] ? save_trace+0x290/0x290 [ 3517.064796] ? warn_alloc+0xf0/0xf0 [ 3517.064818] ? __might_sleep+0x93/0xb0 [ 3517.074911] Normal: [ 3517.074977] __alloc_pages_nodemask+0x62c/0x7a0 [ 3517.086452] 1490*4kB [ 3517.088159] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3517.088172] ? ____cache_alloc_node+0x1be/0x1d0 [ 3517.088184] ? cache_grow_begin+0x335/0x400 [ 3517.088202] cache_grow_begin+0x80/0x400 [ 3517.110107] (UME) [ 3517.111280] ? __cpuset_node_allowed+0xff/0x450 [ 3517.111299] fallback_alloc+0x1fd/0x2c0 [ 3517.111315] ____cache_alloc_node+0x1be/0x1d0 [ 3517.117083] 198*8kB [ 3517.118724] kmem_cache_alloc_trace+0x213/0x790 [ 3517.118735] ? debug_smp_processor_id+0x1c/0x20 [ 3517.118747] ? perf_trace_lock+0x109/0x500 [ 3517.118767] kvm_dev_ioctl+0x163/0x1620 [ 3517.166713] ? kvm_put_kvm+0xaa0/0xaa0 [ 3517.170631] ? kvm_put_kvm+0xaa0/0xaa0 [ 3517.174505] do_vfs_ioctl+0x7ae/0x1060 [ 3517.178379] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3517.183123] ? lock_downgrade+0x740/0x740 [ 3517.187268] ? ioctl_preallocate+0x1c0/0x1c0 [ 3517.191661] ? __fget+0x237/0x370 [ 3517.195106] ? security_file_ioctl+0x89/0xb0 [ 3517.199499] SyS_ioctl+0x8f/0xc0 [ 3517.202850] ? do_vfs_ioctl+0x1060/0x1060 [ 3517.206984] do_syscall_64+0x1e8/0x640 [ 3517.210867] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3517.215702] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3517.220875] RIP: 0033:0x45a6f9 [ 3517.224050] RSP: 002b:00007f5026ac1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3517.231744] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3517.238996] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3517.246249] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3517.253501] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5026ac26d4 [ 3517.260754] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3517.277740] CPU: 0 PID: 10243 Comm: syz-executor.3 Not tainted 4.14.158-syzkaller #0 [ 3517.285656] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3517.295005] Call Trace: [ 3517.295020] dump_stack+0x142/0x197 [ 3517.295038] warn_alloc.cold+0x96/0x1af [ 3517.295048] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3517.295075] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3517.295093] __alloc_pages_slowpath+0x23c6/0x2930 [ 3517.301288] ? save_trace+0x290/0x290 [ 3517.323970] ? warn_alloc+0xf0/0xf0 [ 3517.327620] ? __might_sleep+0x93/0xb0 [ 3517.331521] __alloc_pages_nodemask+0x62c/0x7a0 [ 3517.336226] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3517.341248] ? ____cache_alloc_node+0x1be/0x1d0 [ 3517.345922] ? cache_grow_begin+0x335/0x400 [ 3517.350258] cache_grow_begin+0x80/0x400 [ 3517.354325] ? __cpuset_node_allowed+0xff/0x450 [ 3517.358998] fallback_alloc+0x1fd/0x2c0 [ 3517.363127] ____cache_alloc_node+0x1be/0x1d0 [ 3517.367636] kmem_cache_alloc_trace+0x213/0x790 [ 3517.372313] ? debug_smp_processor_id+0x1c/0x20 [ 3517.376988] ? perf_trace_lock+0x109/0x500 [ 3517.381245] kvm_dev_ioctl+0x163/0x1620 [ 3517.385231] ? kvm_put_kvm+0xaa0/0xaa0 [ 3517.389132] ? kvm_put_kvm+0xaa0/0xaa0 [ 3517.393027] do_vfs_ioctl+0x7ae/0x1060 [ 3517.396932] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3517.401693] ? lock_downgrade+0x740/0x740 [ 3517.405852] ? ioctl_preallocate+0x1c0/0x1c0 [ 3517.410274] ? __fget+0x237/0x370 [ 3517.413736] ? security_file_ioctl+0x89/0xb0 [ 3517.418153] SyS_ioctl+0x8f/0xc0 [ 3517.421520] ? do_vfs_ioctl+0x1060/0x1060 [ 3517.425674] do_syscall_64+0x1e8/0x640 [ 3517.429568] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3517.434429] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3517.439614] RIP: 0033:0x45a6f9 [ 3517.442791] RSP: 002b:00007ff826292c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3517.450571] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3517.457901] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3517.465177] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3517.472446] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff8262936d4 [ 3517.479708] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3517.487602] warn_alloc_show_mem: 3 callbacks suppressed [ 3517.487606] Mem-Info: [ 3517.495640] active_anon:1327347 inactive_anon:634 isolated_anon:12 [ 3517.495640] active_file:1333 inactive_file:4163 isolated_file:0 [ 3517.495640] unevictable:0 dirty:44 writeback:34 unstable:0 [ 3517.495640] slab_reclaimable:16862 slab_unreclaimable:120239 [ 3517.495640] mapped:56489 shmem:7532 pagetables:16568 bounce:0 [ 3517.495640] free:37019 free_pcp:268 free_cma:0 [ 3517.510366] (UME) 20:19:35 executing program 1: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ttyS3\x00', 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='stat\t\xc0\xd2\xfe\xbc\xf9\xdf-\xea\xc8\xc1w\xff\x17\x12H\xe9\x11\x93Q0I\xf81U\ro}\xe6l\xf67\xbd\xbf\x13\x11\x92\f\x8a&\xed\xa4\xdc\xc3x?\x9d\xb5\x11k4\xd3\x1b\x05\x12\xa5`\x8a\xaf\xf0\x1eyR4\f\xd6\xfd\x00\x00\x00\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f0000002840)=ANY=[@ANYBLOB="3f2a273c09aa4559b3"], 0x9) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0) ioctl$TCSETS2(r0, 0x402c542b, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "54b097c6f26d9cdd209f754aed7506cdf7c917"}) [ 3517.531843] Node 0 active_anon:1972028kB inactive_anon:1356kB active_file:4144kB inactive_file:16040kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:223608kB dirty:80kB writeback:88kB shmem:11984kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3517.562875] Node 1 active_anon:3337360kB inactive_anon:1180kB active_file:1188kB inactive_file:712kB unevictable:0kB isolated(anon):48kB isolated(file):0kB mapped:2348kB dirty:96kB writeback:48kB shmem:18144kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3517.569349] 1855*16kB (UME) 1393*32kB (UMEH) 135*64kB (UMH) 2*128kB (UH) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 90696kB [ 3517.602504] Node 0 DMA free:10404kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3517.634019] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3517.640457] lowmem_reserve[]: [ 3517.642933] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 20:19:36 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB]) [ 3517.642942] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3517.642950] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3517.642955] 13225 total pagecache pages [ 3517.642967] 0 pages in swap cache [ 3517.642974] Swap cache stats: add 0, delete 0, find 0/0 [ 3517.642982] Free swap = 0kB [ 3517.647537] 0 [ 3517.655178] Total swap = 0kB [ 3517.672382] 1965979 pages RAM [ 3517.672386] 0 pages HighMem/MovableOnly [ 3517.672390] 335858 pages reserved [ 3517.672394] 0 pages cma reserved 20:19:36 executing program 1: r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000240)='/dev/ttyS3\x00', 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='stat\t\xc0\xd2\xfe\xbc\xf9\xdf-\xea\xc8\xc1w\xff\x17\x12H\xe9\x11\x93Q0I\xf81U\ro}\xe6l\xf67\xbd\xbf\x13\x11\x92\f\x8a&\xed\xa4\xdc\xc3x?\x9d\xb5\x11k4\xd3\x1b\x05\x12\xa5`\x8a\xaf\xf0\x1eyR4\f\xd6\xfd\x00\x00\x00\x00', 0x275a, 0x0) write$binfmt_script(r1, &(0x7f0000002840)=ANY=[@ANYBLOB="3f2a273c09aa4559b3"], 0x9) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) openat$full(0xffffffffffffff9c, &(0x7f0000000040)='/dev/full\x00', 0x0, 0x0) ioctl$TCSETS2(r0, 0x402c542b, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, 0x0, "54b097c6f26d9cdd209f754aed7506cdf7c917"}) [ 3517.712797] 2569 2569 2569 2569 [ 3517.726972] Node 0 DMA32 free:45620kB min:36380kB low:45472kB high:54564kB active_anon:1967380kB inactive_anon:1356kB active_file:4344kB inactive_file:16140kB unevictable:0kB writepending:172kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12160kB pagetables:28796kB bounce:0kB free_pcp:844kB local_pcp:432kB free_cma:0kB [ 3517.771511] lowmem_reserve[]: 0 0 0 0 0 [ 3517.775631] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3517.806185] lowmem_reserve[]: 0 0 0 0 0 [ 3517.818185] Node 1 Normal free:91244kB min:53508kB low:66884kB high:80260kB active_anon:3337248kB inactive_anon:1000kB active_file:1464kB inactive_file:688kB unevictable:0kB writepending:144kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11200kB pagetables:37476kB bounce:0kB free_pcp:812kB local_pcp:672kB free_cma:0kB [ 3517.866106] lowmem_reserve[]: 0 0 0 0 0 [ 3517.875188] Node 0 DMA: 13*4kB (UMEH) 12*8kB (UMH) 9*16kB (UMEH) 6*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10404kB [ 3517.929163] Node 0 DMA32: 2970*4kB (UME) 1888*8kB (UE) 931*16kB (UM) 100*32kB (UME) 5*64kB (UME) 1*128kB (U) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 45528kB [ 3517.944742] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3517.990210] Node 1 Normal: 1489*4kB (UME) 181*8kB (UME) 1873*16kB (UME) 1414*32kB (UMEH) 138*64kB (UMH) 1*128kB (H) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 91580kB [ 3518.018574] 9pnet: Insufficient options for proto=fd [ 3518.040353] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3518.050111] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3518.058747] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3518.086355] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3518.111648] 13240 total pagecache pages [ 3518.115655] 0 pages in swap cache [ 3518.119106] Swap cache stats: add 0, delete 0, find 0/0 [ 3518.133988] Free swap = 0kB [ 3518.137039] Total swap = 0kB [ 3518.150109] 1965979 pages RAM [ 3518.153453] 0 pages HighMem/MovableOnly [ 3518.157432] 335858 pages reserved 20:19:36 executing program 0: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) r3 = dup(r2) ioctl$PERF_EVENT_IOC_SET_FILTER(0xffffffffffffffff, 0x8b22, 0x0) getsockopt$bt_rfcomm_RFCOMM_LM(r3, 0x12, 0x3, &(0x7f0000000000), &(0x7f0000000040)=0x4) ptrace$setregs(0xffffffffffffffff, 0x0, 0x0, 0x0) 20:19:36 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:36 executing program 1: r0 = socket$inet_udplite(0x2, 0x2, 0x88) recvmsg(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000280)=""/8, 0x8}, {0x0}, {0x0}], 0x3}, 0x42) r1 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r1, 0x0, 0xccf3, 0x0, 0x0, 0x800e00545) shutdown(r0, 0x0) r2 = socket$inet_udplite(0x2, 0x2, 0x88) recvmsg(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000880)=[{&(0x7f00000002c0)=""/169, 0xa9}, {0x0}, {0x0}], 0x3}, 0x0) r3 = dup(r2) r4 = socket$inet_udplite(0x2, 0x2, 0x88) recvfrom$inet(r4, 0x0, 0xccf3, 0x0, 0x0, 0x800e0053d) shutdown(r3, 0x0) r5 = socket$inet6_sctp(0x1c, 0x5, 0x84) readv(r5, &(0x7f0000000580), 0x1000000000000353) shutdown(r4, 0x0) shutdown(r1, 0x0) 20:19:36 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:36 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',acce']) [ 3518.167116] 0 pages cma reserved 20:19:36 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_RUN(r0, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3518.271593] syz-executor.2: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3518.282669] syz-executor.4: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3518.296902] syz-executor.3: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) [ 3518.300734] 9pnet: Insufficient options for proto=fd [ 3518.320283] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 3518.333504] CPU: 0 PID: 10280 Comm: syz-executor.4 Not tainted 4.14.158-syzkaller #0 [ 3518.341412] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3518.350794] Call Trace: [ 3518.353405] dump_stack+0x142/0x197 [ 3518.357048] warn_alloc.cold+0x96/0x1af [ 3518.358095] syz-executor.2 cpuset= [ 3518.361027] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3518.361054] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3518.361070] __alloc_pages_slowpath+0x23c6/0x2930 [ 3518.361091] ? save_trace+0x290/0x290 [ 3518.361110] ? warn_alloc+0xf0/0xf0 [ 3518.361136] ? __might_sleep+0x93/0xb0 [ 3518.361149] __alloc_pages_nodemask+0x62c/0x7a0 [ 3518.361162] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3518.361176] ? ____cache_alloc_node+0x1be/0x1d0 [ 3518.364708] syz2 [ 3518.369537] ? cache_grow_begin+0x335/0x400 [ 3518.375861] syz-executor.3 cpuset= [ 3518.379824] cache_grow_begin+0x80/0x400 [ 3518.396652] syz3 [ 3518.400778] ? __cpuset_node_allowed+0xff/0x450 [ 3518.425950] fallback_alloc+0x1fd/0x2c0 [ 3518.429932] ____cache_alloc_node+0x1be/0x1d0 [ 3518.430633] mems_allowed=0-1 [ 3518.434425] kmem_cache_alloc_trace+0x213/0x790 [ 3518.440541] mems_allowed=0-1 [ 3518.442203] ? debug_smp_processor_id+0x1c/0x20 [ 3518.449956] ? perf_trace_lock+0x109/0x500 [ 3518.454229] kvm_dev_ioctl+0x163/0x1620 [ 3518.458220] ? kvm_put_kvm+0xaa0/0xaa0 [ 3518.462108] ? kvm_put_kvm+0xaa0/0xaa0 [ 3518.465986] do_vfs_ioctl+0x7ae/0x1060 [ 3518.469867] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3518.474620] ? lock_downgrade+0x740/0x740 [ 3518.478766] ? ioctl_preallocate+0x1c0/0x1c0 [ 3518.483177] ? __fget+0x237/0x370 [ 3518.486626] ? security_file_ioctl+0x89/0xb0 [ 3518.491050] SyS_ioctl+0x8f/0xc0 [ 3518.494414] ? do_vfs_ioctl+0x1060/0x1060 [ 3518.498569] do_syscall_64+0x1e8/0x640 [ 3518.502459] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3518.507411] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3518.512595] RIP: 0033:0x45a6f9 [ 3518.515770] RSP: 002b:00007f2bca452c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3518.523484] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3518.530771] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3518.538047] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3518.545332] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f2bca4536d4 [ 3518.552598] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3518.560900] CPU: 1 PID: 10276 Comm: syz-executor.2 Not tainted 4.14.158-syzkaller #0 [ 3518.568827] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3518.578191] Call Trace: [ 3518.580794] dump_stack+0x142/0x197 [ 3518.584439] warn_alloc.cold+0x96/0x1af [ 3518.588428] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3518.589661] warn_alloc_show_mem: 1 callbacks suppressed [ 3518.589665] Mem-Info: [ 3518.593283] ? __alloc_pages_direct_compact+0x290/0x380 [ 3518.593298] __alloc_pages_slowpath+0x23c6/0x2930 [ 3518.593322] ? save_trace+0x290/0x290 [ 3518.593342] ? warn_alloc+0xf0/0xf0 [ 3518.593366] ? __might_sleep+0x93/0xb0 [ 3518.593378] __alloc_pages_nodemask+0x62c/0x7a0 [ 3518.593394] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3518.606510] ? ____cache_alloc_node+0x1be/0x1d0 [ 3518.615418] active_anon:1322871 inactive_anon:587 isolated_anon:12 [ 3518.615418] active_file:1568 inactive_file:4098 isolated_file:32 [ 3518.615418] unevictable:0 dirty:99 writeback:0 unstable:0 [ 3518.615418] slab_reclaimable:16769 slab_unreclaimable:120594 [ 3518.615418] mapped:56526 shmem:7457 pagetables:16450 bounce:0 [ 3518.615418] free:41263 free_pcp:235 free_cma:0 20:19:37 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_RUN(r0, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3518.618749] ? cache_grow_begin+0x335/0x400 [ 3518.618767] cache_grow_begin+0x80/0x400 [ 3518.618782] ? __cpuset_node_allowed+0xff/0x450 [ 3518.618796] fallback_alloc+0x1fd/0x2c0 [ 3518.618813] ____cache_alloc_node+0x1be/0x1d0 [ 3518.618830] kmem_cache_alloc_trace+0x213/0x790 [ 3518.632387] ? debug_smp_processor_id+0x1c/0x20 [ 3518.632403] ? perf_trace_lock+0x109/0x500 [ 3518.632427] kvm_dev_ioctl+0x163/0x1620 [ 3518.632448] ? kvm_put_kvm+0xaa0/0xaa0 [ 3518.632467] ? kvm_put_kvm+0xaa0/0xaa0 [ 3518.632481] do_vfs_ioctl+0x7ae/0x1060 [ 3518.632493] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3518.632504] ? lock_downgrade+0x740/0x740 [ 3518.649785] Node 0 active_anon:1954376kB inactive_anon:1368kB active_file:4508kB inactive_file:16204kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:224076kB dirty:352kB writeback:0kB shmem:11896kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 3518.671140] ? ioctl_preallocate+0x1c0/0x1c0 [ 3518.671155] ? __fget+0x237/0x370 [ 3518.671176] ? security_file_ioctl+0x89/0xb0 [ 3518.671191] SyS_ioctl+0x8f/0xc0 [ 3518.671203] ? do_vfs_ioctl+0x1060/0x1060 [ 3518.671220] do_syscall_64+0x1e8/0x640 [ 3518.671230] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3518.671248] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3518.671260] RIP: 0033:0x45a6f9 [ 3518.701828] Node 1 active_anon:3337108kB inactive_anon:980kB active_file:1864kB inactive_file:88kB unevictable:0kB isolated(anon):48kB isolated(file):128kB mapped:2028kB dirty:44kB writeback:0kB shmem:17932kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3518.702212] RSP: 002b:00007fcf276a6c78 EFLAGS: 00000246 [ 3518.706726] Node 0 [ 3518.710396] ORIG_RAX: 0000000000000010 [ 3518.710403] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3518.710408] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000005 [ 3518.710415] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3518.710421] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fcf276a76d4 [ 3518.710428] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3518.711179] 9pnet: Insufficient options for proto=fd [ 3518.744652] CPU: 0 PID: 10277 Comm: syz-executor.3 Not tainted 4.14.158-syzkaller #0 [ 3518.775111] 9pnet: Insufficient options for proto=fd [ 3518.775474] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3518.775480] Call Trace: [ 3518.775498] dump_stack+0x142/0x197 [ 3518.775516] warn_alloc.cold+0x96/0x1af 20:19:37 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(0xffffffffffffffff, 0xae60) r0 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) ioctl$KVM_RUN(r0, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3518.841511] DMA free:10404kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3518.843468] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3518.843489] ? __alloc_pages_direct_compact+0x290/0x380 [ 3518.851198] lowmem_reserve[]: [ 3518.858015] __alloc_pages_slowpath+0x23c6/0x2930 [ 3518.858039] ? save_trace+0x290/0x290 [ 3518.866808] 0 [ 3518.872576] ? warn_alloc+0xf0/0xf0 [ 3518.872602] ? __might_sleep+0x93/0xb0 [ 3518.872615] __alloc_pages_nodemask+0x62c/0x7a0 [ 3518.877730] 2569 20:19:37 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3518.885577] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3518.885590] ? ____cache_alloc_node+0x1be/0x1d0 [ 3518.885602] ? cache_grow_begin+0x335/0x400 [ 3518.885617] cache_grow_begin+0x80/0x400 [ 3518.885630] ? __cpuset_node_allowed+0xff/0x450 [ 3518.885642] fallback_alloc+0x1fd/0x2c0 [ 3518.885659] ____cache_alloc_node+0x1be/0x1d0 [ 3518.885672] kmem_cache_alloc_trace+0x213/0x790 [ 3518.885681] ? debug_smp_processor_id+0x1c/0x20 [ 3518.885693] ? perf_trace_lock+0x109/0x500 [ 3518.885715] kvm_dev_ioctl+0x163/0x1620 [ 3518.893218] 2569 [ 3518.900143] ? kvm_put_kvm+0xaa0/0xaa0 [ 3518.900162] ? kvm_put_kvm+0xaa0/0xaa0 [ 3518.900175] do_vfs_ioctl+0x7ae/0x1060 [ 3518.900188] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3518.900200] ? lock_downgrade+0x740/0x740 [ 3518.902991] 2569 [ 3518.906375] ? ioctl_preallocate+0x1c0/0x1c0 [ 3518.906389] ? __fget+0x237/0x370 [ 3518.906410] ? security_file_ioctl+0x89/0xb0 [ 3518.911811] 2569 [ 3518.936133] SyS_ioctl+0x8f/0xc0 [ 3518.936144] ? do_vfs_ioctl+0x1060/0x1060 [ 3518.936159] do_syscall_64+0x1e8/0x640 20:19:37 executing program 1: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:37 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3518.936168] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3518.936189] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3518.936197] RIP: 0033:0x45a6f9 [ 3518.936203] RSP: 002b:00007ff826292c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3518.936215] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3518.936221] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3518.936228] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3518.936234] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff8262936d4 [ 3518.936240] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff [ 3519.043590] 9pnet: Insufficient options for proto=fd [ 3519.117506] Node 0 [ 3519.180810] syz-executor.3: page allocation failure: order:5, mode:0x14040c0(GFP_KERNEL|__GFP_COMP), nodemask=(null) 20:19:37 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3519.206127] DMA32 free:62104kB min:36380kB low:45472kB high:54564kB active_anon:1949864kB inactive_anon:1340kB active_file:4592kB inactive_file:16372kB unevictable:0kB writepending:516kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:12064kB pagetables:28268kB bounce:0kB free_pcp:1184kB local_pcp:0kB free_cma:0kB [ 3519.235687] syz-executor.3 cpuset=syz3 mems_allowed=0-1 20:19:37 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3519.311741] CPU: 0 PID: 10304 Comm: syz-executor.3 Not tainted 4.14.158-syzkaller #0 [ 3519.319731] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3519.329108] Call Trace: [ 3519.330572] lowmem_reserve[]: [ 3519.331724] dump_stack+0x142/0x197 [ 3519.331748] warn_alloc.cold+0x96/0x1af [ 3519.337057] 0 [ 3519.338460] ? zone_watermark_ok_safe+0x2b0/0x2b0 [ 3519.338485] ? __alloc_pages_direct_compact+0xbc/0x380 [ 3519.348208] 0 [ 3519.349080] __alloc_pages_slowpath+0x23c6/0x2930 [ 3519.360987] ? save_trace+0x290/0x290 [ 3519.361340] 0 [ 3519.364792] ? warn_alloc+0xf0/0xf0 [ 3519.364822] ? __might_sleep+0x93/0xb0 [ 3519.370101] 0 [ 3519.370220] __alloc_pages_nodemask+0x62c/0x7a0 [ 3519.380541] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3519.385227] 0 [ 3519.385559] ? ____cache_alloc_node+0x1be/0x1d0 [ 3519.385571] ? cache_grow_begin+0x335/0x400 [ 3519.394267] Node 0 [ 3519.396330] cache_grow_begin+0x80/0x400 [ 3519.396345] ? __cpuset_node_allowed+0xff/0x450 [ 3519.403127] Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3519.407267] fallback_alloc+0x1fd/0x2c0 [ 3519.407285] ____cache_alloc_node+0x1be/0x1d0 [ 3519.440476] kmem_cache_alloc_trace+0x213/0x790 [ 3519.445154] ? debug_smp_processor_id+0x1c/0x20 [ 3519.449841] ? perf_trace_lock+0x109/0x500 [ 3519.454098] kvm_dev_ioctl+0x163/0x1620 [ 3519.458092] ? kvm_put_kvm+0xaa0/0xaa0 [ 3519.461996] ? kvm_put_kvm+0xaa0/0xaa0 [ 3519.465897] do_vfs_ioctl+0x7ae/0x1060 [ 3519.469845] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3519.474637] ? lock_downgrade+0x740/0x740 [ 3519.478814] ? ioctl_preallocate+0x1c0/0x1c0 [ 3519.483233] ? __fget+0x237/0x370 [ 3519.486719] ? security_file_ioctl+0x89/0xb0 [ 3519.491140] SyS_ioctl+0x8f/0xc0 [ 3519.494511] ? do_vfs_ioctl+0x1060/0x1060 [ 3519.498671] do_syscall_64+0x1e8/0x640 [ 3519.502563] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3519.507418] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3519.507767] lowmem_reserve[]: [ 3519.512604] RIP: 0033:0x45a6f9 [ 3519.512610] RSP: 002b:00007ff826292c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3519.512621] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3519.512627] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000006 [ 3519.512633] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3519.512639] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff8262936d4 20:19:37 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3519.512644] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff 20:19:38 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3519.642469] 9pnet: Insufficient options for proto=fd [ 3519.656012] 0 0 0 0 0 [ 3519.686510] Node 1 Normal free:96816kB min:53508kB low:66884kB high:80260kB active_anon:3337072kB inactive_anon:904kB active_file:1912kB inactive_file:192kB unevictable:0kB writepending:48kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11456kB pagetables:37328kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3519.693889] warn_alloc_show_mem: 2 callbacks suppressed [ 3519.693893] Mem-Info: 20:19:38 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3519.731095] active_anon:1322796 inactive_anon:561 isolated_anon:36 [ 3519.731095] active_file:1612 inactive_file:4141 isolated_file:32 [ 3519.731095] unevictable:0 dirty:141 writeback:0 unstable:0 [ 3519.731095] slab_reclaimable:16729 slab_unreclaimable:120422 [ 3519.731095] mapped:47851 shmem:7410 pagetables:16362 bounce:0 [ 3519.731095] free:47712 free_pcp:161 free_cma:0 [ 3519.869039] lowmem_reserve[]: 0 0 0 0 0 [ 3519.888542] Node 0 DMA: 13*4kB (UMEH) 15*8kB (UMH) 9*16kB (UMEH) 6*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10428kB [ 3519.916546] 9pnet: Insufficient options for proto=fd [ 3519.973596] Node 0 active_anon:1954112kB inactive_anon:1340kB active_file:4692kB inactive_file:16572kB unevictable:0kB isolated(anon):48kB isolated(file):0kB mapped:189452kB dirty:116kB writeback:100kB shmem:11784kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 540672kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3520.011075] Node 0 DMA32: 13289*4kB (UME) 2000*8kB (UME) [ 3520.042120] 1055*16kB (UM) 133*32kB (UME) 8*64kB (UME) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 90804kB [ 3520.050901] Node 1 active_anon:3336972kB inactive_anon:904kB active_file:1856kB inactive_file:92kB unevictable:0kB isolated(anon):96kB isolated(file):0kB mapped:1952kB dirty:48kB writeback:0kB shmem:17856kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 86016kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 3520.086343] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 3520.093980] Node 0 DMA free:10428kB min:216kB low:268kB high:320kB active_anon:4548kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3520.098795] Node 1 [ 3520.129149] lowmem_reserve[]: 0 2569 2569 2569 2569 [ 3520.134333] Node 0 DMA32 free:89596kB min:36380kB low:45472kB high:54564kB active_anon:1949404kB inactive_anon:1336kB active_file:4696kB inactive_file:16648kB unevictable:0kB writepending:52kB present:3129332kB managed:2634384kB mlocked:0kB kernel_stack:11968kB pagetables:27896kB bounce:0kB free_pcp:924kB local_pcp:272kB free_cma:0kB [ 3520.164390] lowmem_reserve[]: 0 0 0 0 0 [ 3520.168414] Node 0 Normal free:0kB min:0kB low:0kB high:0kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:0kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 3520.169986] Normal: [ 3520.200295] lowmem_reserve[]: 0 0 0 0 0 [ 3520.207106] Node 1 Normal free:101756kB min:53508kB low:66884kB high:80260kB active_anon:3337072kB inactive_anon:904kB active_file:1880kB inactive_file:56kB unevictable:0kB writepending:28kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:11232kB pagetables:37328kB bounce:0kB free_pcp:52kB local_pcp:0kB free_cma:0kB [ 3520.220071] 1487*4kB [ 3520.248214] lowmem_reserve[]: 0 0 0 0 0 [ 3520.257026] Node 0 DMA: 13*4kB (UMEH) 15*8kB (UMH) 9*16kB (UMEH) 6*32kB (UMEH) 3*64kB (MEH) 4*128kB (UMEH) 2*256kB (ME) 3*512kB (ME) 3*1024kB (UEH) 2*2048kB (UE) 0*4096kB = 10428kB [ 3520.260098] (UME) 910*8kB (UME) 2076*16kB (UME) 1444*32kB (UMEH) 144*64kB (UMH) 1*128kB (H) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 101996kB [ 3520.304367] Node 0 DMA32: 13310*4kB (UME) 1841*8kB (UME) 1051*16kB (UM) 136*32kB (UME) 8*64kB (UME) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 89648kB [ 3520.319390] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3520.340063] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3520.348664] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3520.348666] Node 0 Normal: [ 3520.369664] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3520.382302] 13142 total pagecache pages [ 3520.386284] 0 pages in swap cache [ 3520.386771] 0*4kB [ 3520.389724] Swap cache stats: add 0, delete 0, find 0/0 [ 3520.389729] Free swap = 0kB [ 3520.389732] Total swap = 0kB [ 3520.389743] 1965979 pages RAM [ 3520.389747] 0 pages HighMem/MovableOnly [ 3520.389752] 335858 pages reserved [ 3520.407587] 0*8kB [ 3520.410918] 0 pages cma reserved [ 3520.426974] 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB 20:19:38 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:38 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, 0x0) 20:19:38 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',acce']) 20:19:38 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:38 executing program 1: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3520.484315] Node 1 Normal: 1542*4kB (UME) 1028*8kB (UME) 2085*16kB (UME) 1448*32kB (UMEH) 144*64kB (UMH) 1*128kB (H) 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 103432kB [ 3520.512543] 9pnet: Insufficient options for proto=fd [ 3520.557624] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3520.613597] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3520.633389] 9pnet: Insufficient options for proto=fd 20:19:39 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, 0x0) [ 3520.654225] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 3520.699096] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 3520.753443] 13833 total pagecache pages [ 3520.790771] 0 pages in swap cache [ 3520.820885] Swap cache stats: add 0, delete 0, find 0/0 [ 3520.858891] Free swap = 0kB [ 3520.886237] Total swap = 0kB [ 3520.899760] 1965979 pages RAM [ 3520.910437] 0 pages HighMem/MovableOnly [ 3520.922466] 335858 pages reserved [ 3520.932783] 0 pages cma reserved 20:19:39 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:39 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:39 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',acce']) 20:19:39 executing program 1: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, 0x0, &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:39 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, 0x0) [ 3521.109448] 9pnet: Insufficient options for proto=fd [ 3521.139904] 9pnet: Insufficient options for proto=fd 20:19:39 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',access']) 20:19:39 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:39 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX]) 20:19:39 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:39 executing program 1: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3521.513211] 9pnet: Insufficient options for proto=fd [ 3521.530677] 9pnet: Insufficient options for proto=fd [ 3521.537921] 9pnet: Insufficient options for proto=fd [ 3521.600993] 9pnet: Insufficient options for proto=fd [ 3523.638980] audit: type=1400 audit(1576009182.006:125): avc: denied { map } for pid=10411 comm="syz-executor.0" path="/sys/kernel/debug/kcov" dev="debugfs" ino=21 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=system_u:object_r:debugfs_t:s0 tclass=file permissive=1 [ 3523.950814] device bridge_slave_1 left promiscuous mode [ 3523.956386] bridge0: port 2(bridge_slave_1) entered disabled state [ 3524.001092] device bridge_slave_0 left promiscuous mode [ 3524.006603] bridge0: port 1(bridge_slave_0) entered disabled state [ 3524.144047] device hsr_slave_1 left promiscuous mode [ 3524.194992] device hsr_slave_0 left promiscuous mode [ 3524.254693] team0 (unregistering): Port device team_slave_1 removed [ 3524.265395] team0 (unregistering): Port device team_slave_0 removed [ 3524.275803] bond0 (unregistering): Releasing backup interface bond_slave_1 [ 3524.324155] bond0 (unregistering): Releasing backup interface bond_slave_0 [ 3524.400442] bond0 (unregistering): Released all slaves [ 3526.431573] IPVS: ftp: loaded support on port[0] = 21 [ 3527.350187] chnl_net:caif_netlink_parms(): no params data found [ 3527.386573] bridge0: port 1(bridge_slave_0) entered blocking state [ 3527.393520] bridge0: port 1(bridge_slave_0) entered disabled state [ 3527.400839] device bridge_slave_0 entered promiscuous mode [ 3527.407625] bridge0: port 2(bridge_slave_1) entered blocking state [ 3527.414133] bridge0: port 2(bridge_slave_1) entered disabled state [ 3527.421138] device bridge_slave_1 entered promiscuous mode [ 3527.438485] bond0: Enslaving bond_slave_0 as an active interface with an up link [ 3527.448002] bond0: Enslaving bond_slave_1 as an active interface with an up link [ 3527.468534] IPv6: ADDRCONF(NETDEV_UP): team_slave_0: link is not ready [ 3527.475869] team0: Port device team_slave_0 added [ 3527.481535] IPv6: ADDRCONF(NETDEV_UP): team_slave_1: link is not ready [ 3527.488602] team0: Port device team_slave_1 added [ 3527.494355] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_0: link is not ready [ 3527.501790] IPv6: ADDRCONF(NETDEV_UP): bridge_slave_1: link is not ready [ 3527.562430] device hsr_slave_0 entered promiscuous mode [ 3527.610562] device hsr_slave_1 entered promiscuous mode [ 3527.680864] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_0: link is not ready [ 3527.688083] IPv6: ADDRCONF(NETDEV_UP): hsr_slave_1: link is not ready [ 3527.703823] bridge0: port 2(bridge_slave_1) entered blocking state [ 3527.710233] bridge0: port 2(bridge_slave_1) entered forwarding state [ 3527.716841] bridge0: port 1(bridge_slave_0) entered blocking state [ 3527.723236] bridge0: port 1(bridge_slave_0) entered forwarding state [ 3527.756347] IPv6: ADDRCONF(NETDEV_UP): bond0: link is not ready [ 3527.763110] 8021q: adding VLAN 0 to HW filter on device bond0 [ 3527.771825] IPv6: ADDRCONF(NETDEV_UP): veth0: link is not ready [ 3527.781006] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 3527.788096] bridge0: port 1(bridge_slave_0) entered disabled state [ 3527.805722] bridge0: port 2(bridge_slave_1) entered disabled state [ 3527.815993] IPv6: ADDRCONF(NETDEV_UP): team0: link is not ready [ 3527.822481] 8021q: adding VLAN 0 to HW filter on device team0 [ 3527.832972] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 3527.841175] bridge0: port 1(bridge_slave_0) entered blocking state [ 3527.847517] bridge0: port 1(bridge_slave_0) entered forwarding state [ 3527.861443] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 3527.869047] bridge0: port 2(bridge_slave_1) entered blocking state [ 3527.875432] bridge0: port 2(bridge_slave_1) entered forwarding state [ 3527.884721] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 3527.893736] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 3527.908079] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 3527.919416] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 3527.929708] IPv6: ADDRCONF(NETDEV_UP): hsr0: link is not ready [ 3527.937596] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 3527.946293] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 3527.953886] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 3527.961872] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 3527.976599] IPv6: ADDRCONF(NETDEV_UP): vxcan0: link is not ready [ 3527.984352] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 3527.991504] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 3528.002704] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 3528.340520] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready 20:19:47 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:47 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:47 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',access']) 20:19:47 executing program 1: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:47 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:47 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX]) [ 3529.265339] 9pnet: Insufficient options for proto=fd [ 3529.274867] 9pnet: Insufficient options for proto=fd [ 3529.291547] 9pnet: Insufficient options for proto=fd [ 3529.321823] 9pnet: Insufficient options for proto=fd 20:19:47 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',access']) 20:19:47 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:47 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:47 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX]) 20:19:47 executing program 1: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, 0x0) [ 3529.459207] 9pnet: Insufficient options for proto=fd 20:19:47 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, 0x0) [ 3529.578001] 9pnet: Insufficient options for proto=fd [ 3529.605016] 9pnet: Insufficient options for proto=fd 20:19:48 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3529.638251] 9pnet: Insufficient options for proto=fd 20:19:48 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB]) 20:19:48 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:48 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',access=']) 20:19:48 executing program 1: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, 0x0) 20:19:48 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',acce']) [ 3529.925176] 9pnet: Insufficient options for proto=fd 20:19:48 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:48 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:48 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB]) [ 3530.021352] 9pnet: Insufficient options for proto=fd 20:19:48 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',access=']) 20:19:48 executing program 1: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, 0x0) [ 3530.193150] 9pnet: Insufficient options for proto=fd 20:19:48 executing program 5: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3530.284637] 9pnet: Insufficient options for proto=fd 20:19:48 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:48 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:48 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB]) 20:19:48 executing program 1: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3530.435302] 9pnet: Insufficient options for proto=fd 20:19:48 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',access=']) 20:19:48 executing program 5: mkdir(0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:49 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(0xffffffffffffffff, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3530.664897] 9pnet: Insufficient options for proto=fd 20:19:49 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3530.708451] 9pnet: Insufficient options for proto=fd 20:19:49 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',acce']) 20:19:49 executing program 1: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3530.815689] 9pnet: Insufficient options for proto=fd 20:19:49 executing program 5: mkdir(0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:49 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYBLOB="2c6163636573733d06"]) 20:19:49 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, 0x0) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3530.971928] 9pnet: Insufficient options for proto=fd [ 3531.002211] 9pnet: Insufficient options for proto=fd 20:19:49 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',acce']) 20:19:49 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3531.097596] 9pnet: Insufficient options for proto=fd 20:19:49 executing program 5: mkdir(0x0, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:49 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3531.179883] 9pnet: Insufficient options for proto=fd 20:19:49 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYBLOB="2c6163636573733d06"]) [ 3531.357020] 9pnet: Insufficient options for proto=fd 20:19:49 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, 0x0) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3531.402885] 9pnet: Insufficient options for proto=fd 20:19:49 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:49 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',acce']) 20:19:49 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3531.547629] 9pnet: Insufficient options for proto=fd [ 3531.633403] 9pnet: Insufficient options for proto=fd 20:19:50 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYBLOB="2c6163636573733d06"]) 20:19:50 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, 0x0) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:50 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3531.770561] 9pnet: Insufficient options for proto=fd 20:19:50 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:50 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',access']) [ 3531.835062] 9pnet: Insufficient options for proto=fd [ 3531.968021] 9pnet: Insufficient options for proto=fd 20:19:50 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3531.999311] 9pnet: Insufficient options for proto=fd 20:19:50 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3532.056583] 9pnet: Insufficient options for proto=fd 20:19:50 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:50 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',access']) 20:19:50 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:50 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3532.347711] 9pnet: Insufficient options for proto=fd [ 3532.377487] 9pnet: Insufficient options for proto=fd [ 3532.453229] 9pnet: Insufficient options for proto=fd 20:19:50 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',access']) 20:19:50 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3532.476607] 9pnet: Insufficient options for proto=fd 20:19:50 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:51 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:51 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:51 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) [ 3532.687753] 9pnet: Insufficient options for proto=fd 20:19:51 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',access=']) [ 3532.755219] 9pnet: Insufficient options for proto=fd 20:19:51 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3532.854998] 9pnet: Insufficient options for proto=fd [ 3532.897020] 9pnet: Insufficient options for proto=fd 20:19:51 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3532.992538] 9pnet: Insufficient options for proto=fd 20:19:51 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) 20:19:51 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:51 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:51 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',access=']) [ 3533.148357] 9pnet: Insufficient options for proto=fd [ 3533.193709] 9pnet: Insufficient options for proto=fd 20:19:51 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:51 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB, @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3533.364611] 9pnet: Insufficient options for proto=fd [ 3533.381896] 9pnet: Insufficient options for proto=fd [ 3533.397940] 9pnet: Insufficient options for proto=fd 20:19:51 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3533.481806] 9pnet: Insufficient options for proto=fd 20:19:51 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB=',access=']) 20:19:51 executing program 0: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000080)) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:51 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:52 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) 20:19:52 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB, @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3533.705672] 9pnet: Insufficient options for proto=fd [ 3533.758605] 9pnet: Insufficient options for proto=fd 20:19:52 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:52 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYBLOB="2c6163636573733d06"]) 20:19:52 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3533.921206] 9pnet: Insufficient options for proto=fd [ 3533.927538] 9pnet: Insufficient options for proto=fd [ 3533.953947] 9pnet: Insufficient options for proto=fd 20:19:52 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB, @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:52 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:52 executing program 0: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3534.152364] 9pnet: Insufficient options for proto=fd 20:19:52 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYBLOB="2c6163636573733d06"]) 20:19:52 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) [ 3534.252687] 9pnet: Insufficient options for proto=fd 20:19:52 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3534.302557] 9pnet: Insufficient options for proto=fd 20:19:52 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x0) ioctl$KVM_RUN(r1, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:52 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfd', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3534.490291] 9pnet: Insufficient options for proto=fd 20:19:52 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) [ 3534.552111] 9pnet: Insufficient options for proto=fd 20:19:53 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYBLOB="2c6163636573733d06"]) [ 3534.631269] 9pnet: Insufficient options for proto=fd 20:19:53 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:53 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:53 executing program 0: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:53 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfd', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3534.874235] 9pnet: Insufficient options for proto=fd 20:19:53 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3534.984106] 9pnet: Insufficient options for proto=fd 20:19:53 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3535.023912] 9pnet: Insufficient options for proto=fd 20:19:53 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) 20:19:53 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:53 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfd', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:53 executing program 0: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3535.278352] 9pnet: Insufficient options for proto=fd [ 3535.370948] 9pnet: Insufficient options for proto=fd 20:19:53 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:53 executing program 5: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:53 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3535.463115] 9pnet: Insufficient options for proto=fd 20:19:53 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) 20:19:53 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) [ 3535.632063] 9pnet: Insufficient options for proto=fd [ 3535.674374] page:ffffea0004f0d800 count:1 mapcount:0 mapping:ffff88813c368fc0 index:0x0 compound_mapcount: 0 [ 3535.676456] 9pnet: Insufficient options for proto=fd [ 3535.744806] flags: 0x57ffe0000008100(slab|head) 20:19:54 executing program 2: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, 0x0, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r2, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3535.771239] raw: 057ffe0000008100 ffff88813c368fc0 0000000000000000 0000000100000001 20:19:54 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno=', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3535.854274] raw: ffffea000818d020 ffffea0004f0e020 ffff8880aa802500 0000000000000000 20:19:54 executing program 0: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)) sendmsg$unix(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000200)="4bf33d1f60030f31f744d6b582df9b44088a20530acf79f045064f5d214d45a2f96b024abbfae629bfaaffab717538", 0x2f}], 0x1}, 0x0) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) [ 3535.897050] page dumped because: VM_BUG_ON_PAGE(PageSlab(page)) [ 3535.902190] 9pnet: Insufficient options for proto=fd [ 3535.932685] ------------[ cut here ]------------ [ 3535.937470] kernel BUG at include/linux/mm.h:573! [ 3535.977194] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 3535.982600] Modules linked in: [ 3535.985798] CPU: 0 PID: 10897 Comm: syz-executor.5 Not tainted 4.14.158-syzkaller #0 [ 3535.993671] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 3536.003013] task: ffff88805d3260c0 task.stack: ffff888209558000 [ 3536.009129] RIP: 0010:isolate_migratepages_block+0x15a7/0x1c20 [ 3536.015089] RSP: 0018:ffff88820955f430 EFLAGS: 00010246 [ 3536.020447] RAX: 0000000000040000 RBX: dffffc0000000000 RCX: ffffc90005e3c000 [ 3536.027710] RDX: 0000000000040000 RSI: ffffffff817c3b58 RDI: ffffea0004f0d838 [ 3536.034973] RBP: ffff88820955f548 R08: 0000000000000033 R09: 0000000000000000 [ 3536.042236] R10: 0000000000000000 R11: 0000000000000000 R12: ffffea0004f0d800 [ 3536.049499] R13: ffff88820955f6d0 R14: ffffea0004f0d800 R15: 000000000013c360 [ 3536.056766] FS: 00007f5026ac2700(0000) GS:ffff8880aec00000(0000) knlGS:0000000000000000 [ 3536.064984] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3536.070859] CR2: 00007fd2828b6330 CR3: 000000003bead000 CR4: 00000000001406f0 [ 3536.078124] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3536.085412] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3536.092678] Call Trace: [ 3536.095279] ? compaction_alloc+0x8b0/0x8b0 [ 3536.099599] ? rcu_lockdep_current_cpu_online+0xf2/0x140 [ 3536.105053] compact_zone+0xf0f/0x2650 [ 3536.108951] ? compaction_suitable+0x340/0x340 [ 3536.113525] ? drain_all_pages+0x371/0x570 [ 3536.117759] compact_zone_order+0xee/0x150 [ 3536.121993] ? compact_zone+0x2650/0x2650 [ 3536.126143] ? compaction_deferred+0x128/0x360 [ 3536.130713] try_to_compact_pages+0x21b/0xa10 [ 3536.135200] __alloc_pages_direct_compact+0xbc/0x380 [ 3536.140291] __alloc_pages_slowpath+0xada/0x2930 [ 3536.145049] ? save_trace+0x290/0x290 [ 3536.148841] ? warn_alloc+0xf0/0xf0 [ 3536.152461] ? __might_sleep+0x93/0xb0 [ 3536.156337] __alloc_pages_nodemask+0x62c/0x7a0 [ 3536.161011] ? __alloc_pages_slowpath+0x2930/0x2930 [ 3536.166013] ? ____cache_alloc_node+0x1be/0x1d0 [ 3536.170684] ? cache_grow_begin+0x335/0x400 [ 3536.174998] cache_grow_begin+0x80/0x400 [ 3536.179175] ? __cpuset_node_allowed+0xff/0x450 [ 3536.183834] fallback_alloc+0x1fd/0x2c0 [ 3536.187801] ____cache_alloc_node+0x1be/0x1d0 [ 3536.192289] kmem_cache_alloc_trace+0x213/0x790 [ 3536.196952] ? debug_smp_processor_id+0x1c/0x20 [ 3536.201612] ? perf_trace_lock+0x109/0x500 [ 3536.205856] kvm_dev_ioctl+0x163/0x1620 [ 3536.209820] ? kvm_put_kvm+0xaa0/0xaa0 [ 3536.213696] ? kvm_put_kvm+0xaa0/0xaa0 [ 3536.217573] do_vfs_ioctl+0x7ae/0x1060 [ 3536.221454] ? selinux_file_mprotect+0x5d0/0x5d0 [ 3536.226215] ? lock_downgrade+0x740/0x740 [ 3536.230351] ? ioctl_preallocate+0x1c0/0x1c0 [ 3536.234750] ? __fget+0x237/0x370 [ 3536.238195] ? security_file_ioctl+0x89/0xb0 [ 3536.242596] SyS_ioctl+0x8f/0xc0 [ 3536.245948] ? do_vfs_ioctl+0x1060/0x1060 [ 3536.250085] do_syscall_64+0x1e8/0x640 [ 3536.253955] ? trace_hardirqs_off_thunk+0x1a/0x1c [ 3536.258787] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 3536.263962] RIP: 0033:0x45a6f9 [ 3536.267133] RSP: 002b:00007f5026ac1c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 3536.274826] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 000000000045a6f9 [ 3536.282078] RDX: 0000000000000000 RSI: 000000000000ae01 RDI: 0000000000000003 [ 3536.289327] RBP: 000000000075bf20 R08: 0000000000000000 R09: 0000000000000000 [ 3536.296580] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f5026ac26d4 [ 3536.303831] R13: 00000000004c3ad2 R14: 00000000004d90f0 R15: 00000000ffffffff 20:19:54 executing program 1: socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(r3, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0xffffffffffffff77, 0x0, 0x0, 0x0) ioctl$KVM_SET_VAPIC_ADDR(r4, 0x4008ae93, &(0x7f0000000040)=0x1) ioctl$KVM_GET_VCPU_EVENTS(r4, 0x4400ae8f, &(0x7f0000000140)) 20:19:54 executing program 4: mkdir(&(0x7f0000000100)='./file0\x00', 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000100)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) sendmsg$IPVS_CMD_SET_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000001540)=ANY=[@ANYPTR64=&(0x7f00000003c0)=ANY=[@ANYPTR=&(0x7f0000000280)=ANY=[@ANYRESHEX=0x0]]], 0x1}}, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_GET_VCPU_EVENTS(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000140)) ioctl$KVM_RUN(r4, 0xae80, 0x0) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='9p\x00', 0x0, &(0x7f0000000140)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdno', @ANYRESHEX, @ANYBLOB="2c6163636573733d06"]) [ 3536.311090] Code: ff ff e8 8d 32 e2 ff 48 8b 85 48 ff ff ff 48 8d 78 ff e9 36 fb ff ff e8 78 32 e2 ff 48 c7 c6 e0 7f d1 86 4c 89 e7 e8 c9 19 01 00 <0f> 0b 48 89 85 18 ff ff ff e8 5b 32 e2 ff 48 8b 85 18 ff ff ff [ 3536.330265] RIP: isolate_migratepages_block+0x15a7/0x1c20 RSP: ffff88820955f430 [ 3536.350212] ---[ end trace 6c9cc1e2d990e1a1 ]--- [ 3536.360870] kobject: 'loop1' (ffff8880a40a24a0): kobject_uevent_env [ 3536.377080] 9pnet: Insufficient options for proto=fd [ 3536.377924] kobject: 'loop1' (ffff8880a40a24a0): fill_kobj_path: path = '/devices/virtual/block/loop1' [ 3536.386019] kobject: 'kvm' (ffff8880a6466dd0): kobject_uevent_env [ 3536.400895] kobject: 'kvm' (ffff8880a6466dd0): kobject_uevent_env [ 3536.407063] kobject: 'kvm' (ffff8880a6466dd0): kobject_uevent_env [ 3536.407175] kobject: 'kvm' (ffff8880a6466dd0): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 3536.415414] Kernel panic - not syncing: Fatal exception [ 3536.426357] kobject: 'kvm' (ffff8880a6466dd0): fill_kobj_path: path = '/devices/virtual/misc/kvm' [ 3536.429260] Kernel Offset: disabled [ 3536.441991] Rebooting in 86400 seconds..