:0kB [ 1464.641415] lowmem_reserve[]: 0 0 0 0 0 [ 1464.655859] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1464.762340] lowmem_reserve[]: 0 0 0 0 0 [ 1464.791866] Node 1 Normal free:2146744kB min:53612kB low:67012kB high:80412kB active_anon:1216600kB inactive_anon:16kB active_file:28796kB inactive_file:24116kB unevictable:0kB writepending:28kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12320kB pagetables:28088kB bounce:0kB free_pcp:820kB local_pcp:140kB free_cma:0kB [ 1464.902780] lowmem_reserve[]: 0 0 0 0 0 [ 1464.917968] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1464.973607] Node 0 DMA32: 731*4kB (UME) 1468*8kB (UMEH) 790*16kB (UMEH) 248*32kB (UMEH) 9*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 35820kB [ 1465.031628] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1465.070563] Node 1 Normal: 91*4kB (UME) 190*8kB (UME) 111*16kB (UME) 118*32kB (UE) 40*64kB (UME) 24*128kB (UME) 6*256kB (U) 3*512kB (U) 3*1024kB (UM) 5*2048kB (UM) 517*4096kB (UME) = 2147084kB [ 1465.136753] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1465.176573] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1465.216410] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1465.256497] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1465.299010] 13779 total pagecache pages [ 1465.314542] warn_alloc_show_mem: 1 callbacks suppressed [ 1465.314546] Mem-Info: [ 1465.327886] 0 pages in swap cache [ 1465.344196] Swap cache stats: add 0, delete 0, find 0/0 [ 1465.361975] active_anon:796913 inactive_anon:200 isolated_anon:0 [ 1465.361975] active_file:7215 inactive_file:6037 isolated_file:0 [ 1465.361975] unevictable:0 dirty:6 writeback:0 unstable:0 [ 1465.361975] slab_reclaimable:12375 slab_unreclaimable:132823 [ 1465.361975] mapped:59071 shmem:528 pagetables:16263 bounce:0 [ 1465.361975] free:548743 free_pcp:241 free_cma:0 [ 1465.405800] Free swap = 0kB [ 1465.418183] Total swap = 0kB [ 1465.428952] 1965979 pages RAM [ 1465.441219] 0 pages HighMem/MovableOnly [ 1465.455935] 339049 pages reserved [ 1465.470912] 0 pages cma reserved [ 1465.523002] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:64kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208968kB dirty:0kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 07:19:05 executing program 5: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x6e0]}) r4 = dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) ioctl$VIDIOC_RESERVED(r4, 0x5601, 0x0) [ 1465.671659] Node 1 active_anon:1216492kB inactive_anon:16kB active_file:28796kB inactive_file:24140kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27416kB dirty:24kB writeback:0kB shmem:908kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1465.814246] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1465.941003] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1465.959697] Node 0 DMA32 free:35820kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:64kB inactive_file:8kB unevictable:0kB writepending:0kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:324kB local_pcp:28kB free_cma:0kB [ 1466.017218] syz-executor.5: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1466.065239] syz-executor.5 cpuset=syz5 mems_allowed=0-1 [ 1466.088360] CPU: 1 PID: 23732 Comm: syz-executor.5 Not tainted 4.14.174-syzkaller #0 [ 1466.094073] lowmem_reserve[]: [ 1466.096273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1466.096277] Call Trace: [ 1466.096295] dump_stack+0x13e/0x194 [ 1466.096308] warn_alloc.cold+0x96/0x1af [ 1466.105129] 0 [ 1466.108869] ? zone_watermark_ok_safe+0x280/0x280 [ 1466.108889] ? wait_for_completion+0x390/0x390 [ 1466.108903] __alloc_pages_slowpath+0x2114/0x26c0 [ 1466.127503] 0 [ 1466.130288] ? warn_alloc+0xf0/0xf0 [ 1466.130298] ? find_held_lock+0x2d/0x110 [ 1466.130308] ? fs_reclaim_acquire+0x10/0x10 [ 1466.130326] __alloc_pages_nodemask+0x5d3/0x700 [ 1466.153602] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1466.154605] 0 [ 1466.158616] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1466.158627] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1466.158649] alloc_pages_current+0xe7/0x1e0 [ 1466.174619] kvm_mmu_create+0xd1/0x1c0 [ 1466.176168] 0 [ 1466.178515] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1466.178527] ? alloc_pages_current+0xef/0x1e0 [ 1466.178540] kvm_vcpu_init+0x26d/0x360 [ 1466.192173] 0 [ 1466.193131] vmx_create_vcpu+0xf3/0x2900 [ 1466.193149] ? __mutex_unlock_slowpath+0x75/0x780 [ 1466.193161] ? futex_wake+0x11c/0x3d0 [ 1466.199013] ? handle_rdmsr+0x6b0/0x6b0 [ 1466.199030] kvm_vm_ioctl+0x49c/0x1430 [ 1466.199043] ? __lock_acquire+0x5f7/0x4620 [ 1466.219734] ? kvm_vcpu_release+0xa0/0xa0 [ 1466.219915] Node 0 [ 1466.223884] ? trace_hardirqs_on+0x10/0x10 [ 1466.223899] ? trace_hardirqs_on+0x10/0x10 [ 1466.223913] ? save_trace+0x290/0x290 [ 1466.223924] ? __might_fault+0x104/0x1b0 [ 1466.223939] ? kvm_vcpu_release+0xa0/0xa0 [ 1466.242117] Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1466.242437] do_vfs_ioctl+0x75a/0xfe0 [ 1466.256911] lowmem_reserve[]: [ 1466.271370] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1466.271384] ? ioctl_preallocate+0x1a0/0x1a0 [ 1466.271402] ? security_file_ioctl+0x76/0xb0 [ 1466.271411] ? security_file_ioctl+0x83/0xb0 [ 1466.271422] SyS_ioctl+0x7f/0xb0 [ 1466.299646] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1466.303634] do_syscall_64+0x1d5/0x640 [ 1466.307550] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1466.312746] RIP: 0033:0x45c849 07:19:06 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b75fb3488fd8015bba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377aba09e7b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047706865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB="01"], 0x1) r6 = getgid() r7 = socket$inet_udplite(0x2, 0x2, 0x88) fstat(r7, &(0x7f0000001b80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r9 = socket$inet_udplite(0x2, 0x2, 0x88) fstat(r9, &(0x7f0000001b80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lsetxattr$system_posix_acl(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='system.posix_acl_access\x00', &(0x7f0000000200)=ANY=[@ANYBLOB="020000000100000000005600040003000000000008000100", @ANYRES32=r6, @ANYBLOB='\b\x00\a\x00', @ANYRES32=r8, @ANYBLOB='\b\x00\a\x00', @ANYRES32=r10, @ANYBLOB="1000070000000000200000000000000d"], 0x3c, 0x0) setxattr$system_posix_acl(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='system.posix_acl_access\x00', &(0x7f0000000100)={{}, {0x1, 0x2}, [{0x2, 0x6}], {}, [{0x8, 0x2}, {0x8, 0x6}, {0x8, 0x1}, {0x8, 0x2, r8}], {0x10, 0x2}}, 0x4c, 0x2) [ 1466.313624] 0 [ 1466.315945] RSP: 002b:00007f041bd9cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1466.315956] RAX: ffffffffffffffda RBX: 00007f041bd9d6d4 RCX: 000000000045c849 [ 1466.315960] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1466.315965] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1466.315971] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1466.315976] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c 07:19:06 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) r7 = fcntl$dupfd(r6, 0x0, r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) ioctl$KVM_SET_MSRS(r7, 0x4008ae89, &(0x7f0000000140)=ANY=[@ANYBLOB="09000000000000007c0b000000000000f500000000000000bb09000000000000060000000000000073070000000000000400000000000000e9080000000000007f000000000000001109000000000600080000000000000002010040000000000080000000000000420b0000000000000200000000006d237c6d17ff6021f10a1dd200003b0000000000000098000000000000003c0200"/164]) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB="f2"], 0x1) [ 1466.667232] 0 0 0 0 [ 1466.690739] Node 1 Normal free:2147416kB min:53612kB low:67012kB high:80412kB active_anon:1216744kB inactive_anon:16kB active_file:28796kB inactive_file:24152kB unevictable:0kB writepending:16kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12448kB pagetables:28256kB bounce:0kB free_pcp:900kB local_pcp:420kB free_cma:0kB [ 1466.866913] lowmem_reserve[]: 0 0 0 0 0 [ 1466.892034] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1466.909196] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1466.966460] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1466.980689] Node 0 DMA32: 607*4kB (UME) 1468*8kB (UMEH) 790*16kB (UMEH) 248*32kB (UMEH) 9*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 35324kB [ 1467.005937] CPU: 0 PID: 23753 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1467.013862] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1467.023224] Call Trace: [ 1467.025829] dump_stack+0x13e/0x194 [ 1467.029492] warn_alloc.cold+0x96/0x1af [ 1467.033951] ? zone_watermark_ok_safe+0x280/0x280 [ 1467.038815] ? wait_for_completion+0x390/0x390 [ 1467.043412] __alloc_pages_slowpath+0x2114/0x26c0 [ 1467.048280] ? warn_alloc+0xf0/0xf0 [ 1467.051918] ? find_held_lock+0x2d/0x110 [ 1467.055987] ? fs_reclaim_acquire+0x10/0x10 [ 1467.060324] __alloc_pages_nodemask+0x5d3/0x700 [ 1467.065007] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1467.070031] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1467.074884] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1467.079920] alloc_pages_current+0xe7/0x1e0 [ 1467.084374] kvm_mmu_create+0xd1/0x1c0 [ 1467.088372] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1467.092703] ? alloc_pages_current+0xef/0x1e0 [ 1467.097220] kvm_vcpu_init+0x26d/0x360 [ 1467.101120] vmx_create_vcpu+0xf3/0x2900 [ 1467.105197] ? __mutex_unlock_slowpath+0x75/0x780 [ 1467.110052] ? futex_wake+0x11c/0x3d0 [ 1467.113871] ? handle_rdmsr+0x6b0/0x6b0 [ 1467.117859] kvm_vm_ioctl+0x49c/0x1430 [ 1467.121760] ? __lock_acquire+0x5f7/0x4620 [ 1467.126002] ? kvm_vcpu_release+0xa0/0xa0 [ 1467.130158] ? trace_hardirqs_on+0x10/0x10 [ 1467.134409] ? trace_hardirqs_on+0x10/0x10 [ 1467.138685] ? save_trace+0x290/0x290 [ 1467.142503] ? __might_fault+0x104/0x1b0 [ 1467.146579] ? kvm_vcpu_release+0xa0/0xa0 [ 1467.150869] do_vfs_ioctl+0x75a/0xfe0 [ 1467.154688] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1467.159463] ? ioctl_preallocate+0x1a0/0x1a0 [ 1467.160286] Mem-Info: [ 1467.163901] ? security_file_ioctl+0x76/0xb0 [ 1467.163909] ? security_file_ioctl+0x83/0xb0 [ 1467.163921] SyS_ioctl+0x7f/0xb0 [ 1467.177803] active_anon:796964 inactive_anon:200 isolated_anon:0 [ 1467.177803] active_file:7214 inactive_file:6050 isolated_file:0 [ 1467.177803] unevictable:0 dirty:13 writeback:0 unstable:0 [ 1467.177803] slab_reclaimable:12459 slab_unreclaimable:133654 [ 1467.177803] mapped:59075 shmem:528 pagetables:16267 bounce:0 [ 1467.177803] free:547543 free_pcp:333 free_cma:0 [ 1467.178555] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1467.216497] do_syscall_64+0x1d5/0x640 [ 1467.220403] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1467.225598] RIP: 0033:0x45c849 [ 1467.228791] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1467.236508] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1467.243787] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1467.251065] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1467.258345] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1467.265623] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1467.324559] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:68kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208968kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1467.345090] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1467.455303] Node 1 Normal: 12*4kB (UM) 118*8kB (UME) 39*16kB (UM) 121*32kB (UE) 41*64kB (UME) 19*128kB (UME) 8*256kB (U) 3*512kB (U) 3*1024kB (UM) 5*2048kB (UM) 517*4096kB (UME) = 2145072kB [ 1467.465937] Node 1 active_anon:1216700kB inactive_anon:16kB active_file:28796kB inactive_file:24188kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27320kB dirty:16kB writeback:0kB shmem:912kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1467.551430] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1467.584791] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1467.624123] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1467.647204] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1467.662492] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1467.667323] Node 0 [ 1467.679896] syz-executor.1 cpuset= [ 1467.684832] 13792 total pagecache pages [ 1467.689888] DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1467.692665] syz1 [ 1467.727782] 0 pages in swap cache [ 1467.743884] Swap cache stats: add 0, delete 0, find 0/0 [ 1467.755489] Free swap = 0kB [ 1467.763527] Total swap = 0kB [ 1467.769709] 1965979 pages RAM [ 1467.776729] mems_allowed=0-1 [ 1467.780153] 0 pages HighMem/MovableOnly [ 1467.787950] CPU: 0 PID: 23756 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1467.795856] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1467.805220] Call Trace: [ 1467.807825] dump_stack+0x13e/0x194 [ 1467.811473] warn_alloc.cold+0x96/0x1af [ 1467.815458] ? zone_watermark_ok_safe+0x280/0x280 [ 1467.820323] ? wait_for_completion+0x390/0x390 [ 1467.824919] __alloc_pages_slowpath+0x2114/0x26c0 [ 1467.829782] ? warn_alloc+0xf0/0xf0 [ 1467.833457] ? find_held_lock+0x2d/0x110 [ 1467.837525] ? fs_reclaim_acquire+0x10/0x10 [ 1467.841863] __alloc_pages_nodemask+0x5d3/0x700 [ 1467.846542] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1467.851571] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1467.856449] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1467.861494] alloc_pages_current+0xe7/0x1e0 [ 1467.865836] kvm_mmu_create+0xd1/0x1c0 [ 1467.868344] lowmem_reserve[]: [ 1467.869730] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1467.869745] ? alloc_pages_current+0xef/0x1e0 [ 1467.881651] kvm_vcpu_init+0x26d/0x360 [ 1467.885554] vmx_create_vcpu+0xf3/0x2900 [ 1467.889637] ? __mutex_unlock_slowpath+0x75/0x780 [ 1467.893574] 0 2557 [ 1467.894485] ? futex_wake+0x11c/0x3d0 [ 1467.894497] ? handle_rdmsr+0x6b0/0x6b0 [ 1467.904638] kvm_vm_ioctl+0x49c/0x1430 [ 1467.908538] ? __lock_acquire+0x5f7/0x4620 [ 1467.909681] 2557 [ 1467.912784] ? kvm_vcpu_release+0xa0/0xa0 [ 1467.912796] ? trace_hardirqs_on+0x10/0x10 [ 1467.912810] ? trace_hardirqs_on+0x10/0x10 [ 1467.912825] ? save_trace+0x290/0x290 [ 1467.912834] ? __might_fault+0x104/0x1b0 [ 1467.912847] ? kvm_vcpu_release+0xa0/0xa0 [ 1467.912860] do_vfs_ioctl+0x75a/0xfe0 [ 1467.912872] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1467.912882] ? ioctl_preallocate+0x1a0/0x1a0 [ 1467.912900] ? security_file_ioctl+0x76/0xb0 [ 1467.929491] 2557 [ 1467.931613] ? security_file_ioctl+0x83/0xb0 [ 1467.931627] SyS_ioctl+0x7f/0xb0 [ 1467.931638] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1467.931649] do_syscall_64+0x1d5/0x640 [ 1467.931664] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1467.931671] RIP: 0033:0x45c849 [ 1467.931676] RSP: 002b:00007f4cd9aa7c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1467.931685] RAX: ffffffffffffffda RBX: 00007f4cd9aa86d4 RCX: 000000000045c849 [ 1467.931689] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1467.931697] RBP: 000000000076bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 1467.946942] 2557 [ 1467.948410] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1467.948416] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bfac [ 1467.959290] 339049 pages reserved [ 1468.038890] 0 pages cma reserved 07:19:08 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[], 0x0) ioctl$KVM_GET_CPUID2(r3, 0xc008ae91, &(0x7f0000000080)={0x8, 0x0, [{}, {}, {}, {}, {}, {}, {}, {}]}) [ 1468.195668] Node 0 DMA32 free:35200kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:68kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:408kB local_pcp:296kB free_cma:0kB 07:19:08 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) r4 = dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) r8 = fcntl$dupfd(r7, 0x0, r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) r9 = openat$cgroup_ro(r8, &(0x7f0000000080)='io.stat\x00', 0x0, 0x0) ioctl$DRM_IOCTL_GEM_FLINK(r4, 0xc008640a, &(0x7f00000000c0)={0x0, 0x0}) ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r3, 0xc00c642d, &(0x7f0000000100)={0x0}) ioctl$DRM_IOCTL_GEM_OPEN(r9, 0xc010640b, &(0x7f0000000140)={r10, r11, 0xa0000000000000}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000180)=ANY=[@ANYBLOB="72e282af061b735c4b5f09ce5f9b083719dda6f5524076536d340efbcebafc1057bd633b6e2f1560639cf496444d99c80a361c0da9e6b66dc1"], 0x1) [ 1468.383918] lowmem_reserve[]: 0 0 0 0 0 07:19:08 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b75fb3488fd8015bba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377aba09e7b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047706865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$sock_cred(r5, 0x1, 0x11, &(0x7f0000000240), &(0x7f0000000280)=0xc) r6 = fcntl$dupfd(r5, 0x0, r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$KVM_CREATE_DEVICE(r6, 0xc00caee0, &(0x7f0000000200)={0x2, 0xffffffffffffffff, 0x1}) r7 = socket$packet(0x11, 0x2, 0x300) getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, &(0x7f0000000100)={0x0, @multicast2, @local}, &(0x7f0000000140)=0xc) sendto$packet(r7, &(0x7f0000000080)="8bb07577493c6ecd8e63f7e1c11803137a38ea1eb41ce436724ea3b010f02b9c64700e8cfe2061f9b282b7b6aabf29d0b6e9fc265df2cd13cfeacface2bcc50241b9606551b36c1d5b719c2e1bf0967b1614530020cddaeb4bdb1b66145f7cf2f79fe43c42626cfcf5f8", 0x6a, 0x1, &(0x7f0000000180)={0x11, 0x2, r8, 0x1, 0x1f, 0x6, @dev={[], 0x1e}}, 0x14) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) ioctl$KVM_S390_VCPU_FAULT(r2, 0x4008ae52, &(0x7f00000001c0)=0x3613) [ 1468.406226] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1468.432416] Mem-Info: [ 1468.478484] active_anon:796947 inactive_anon:200 isolated_anon:0 [ 1468.478484] active_file:7216 inactive_file:6057 isolated_file:0 [ 1468.478484] unevictable:0 dirty:17 writeback:0 unstable:0 [ 1468.478484] slab_reclaimable:12486 slab_unreclaimable:132924 [ 1468.478484] mapped:59089 shmem:529 pagetables:16322 bounce:0 [ 1468.478484] free:548243 free_pcp:313 free_cma:0 [ 1468.525207] lowmem_reserve[]: 0 0 0 0 0 [ 1468.545007] Node 1 Normal free:2148212kB min:53612kB low:67012kB high:80412kB active_anon:1216728kB inactive_anon:16kB active_file:28796kB inactive_file:24224kB unevictable:0kB writepending:212kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12608kB pagetables:28424kB bounce:0kB free_pcp:908kB local_pcp:696kB free_cma:0kB [ 1468.667991] lowmem_reserve[]: 0 0 0 0 0 07:19:08 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) [ 1468.717532] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1468.759835] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:68kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208968kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1468.803319] Node 0 DMA32: 483*4kB (UME) 1468*8kB (UMEH) 790*16kB (UMEH) 248*32kB (UMEH) 9*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34828kB [ 1468.824133] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1468.860227] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1468.893768] CPU: 0 PID: 23785 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1468.901696] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1468.905290] Node 0 [ 1468.911049] Call Trace: [ 1468.911068] dump_stack+0x13e/0x194 [ 1468.911085] warn_alloc.cold+0x96/0x1af [ 1468.911093] ? zone_watermark_ok_safe+0x280/0x280 [ 1468.911111] ? wait_for_completion+0x390/0x390 [ 1468.911124] __alloc_pages_slowpath+0x2114/0x26c0 [ 1468.911145] ? warn_alloc+0xf0/0xf0 [ 1468.911155] ? find_held_lock+0x2d/0x110 [ 1468.911164] ? fs_reclaim_acquire+0x10/0x10 [ 1468.911182] __alloc_pages_nodemask+0x5d3/0x700 [ 1468.939396] Normal: [ 1468.941594] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1468.941604] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1468.941612] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1468.941635] alloc_pages_current+0xe7/0x1e0 [ 1468.941650] kvm_mmu_create+0xd1/0x1c0 [ 1468.941661] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1468.941671] ? alloc_pages_current+0xef/0x1e0 [ 1468.954339] 0*4kB [ 1468.954713] kvm_vcpu_init+0x26d/0x360 [ 1468.954728] vmx_create_vcpu+0xf3/0x2900 [ 1468.954745] ? __mutex_unlock_slowpath+0x75/0x780 [ 1468.954757] ? futex_wake+0x11c/0x3d0 [ 1468.979386] 0*8kB [ 1468.980475] ? handle_rdmsr+0x6b0/0x6b0 [ 1468.980491] kvm_vm_ioctl+0x49c/0x1430 [ 1468.980505] ? __lock_acquire+0x5f7/0x4620 [ 1468.980516] ? kvm_vcpu_release+0xa0/0xa0 [ 1468.980528] ? trace_hardirqs_on+0x10/0x10 [ 1468.980544] ? trace_hardirqs_on+0x10/0x10 [ 1468.980555] ? save_trace+0x290/0x290 [ 1468.980563] ? __might_fault+0x104/0x1b0 [ 1468.980576] ? kvm_vcpu_release+0xa0/0xa0 [ 1468.987622] 0*16kB [ 1468.989902] do_vfs_ioctl+0x75a/0xfe0 [ 1468.989916] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1468.989929] ? ioctl_preallocate+0x1a0/0x1a0 [ 1468.989948] ? security_file_ioctl+0x76/0xb0 [ 1469.011286] 0*32kB [ 1469.011415] ? security_file_ioctl+0x83/0xb0 [ 1469.011428] SyS_ioctl+0x7f/0xb0 [ 1469.031897] 0*64kB [ 1469.036594] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1469.036610] do_syscall_64+0x1d5/0x640 [ 1469.036628] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1469.036638] RIP: 0033:0x45c849 [ 1469.089194] 0*128kB [ 1469.094353] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1469.094362] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1469.094367] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1469.094372] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1469.094376] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1469.094382] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1469.108224] Node 1 active_anon:1216820kB inactive_anon:16kB active_file:28796kB inactive_file:24248kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27460kB dirty:52kB writeback:24kB shmem:912kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1469.301746] 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1469.340977] Node 1 Normal: 3*4kB (UM) 249*8kB (UM) 202*16kB (UME) 144*32kB (U) 41*64kB (UME) 2*128kB (U) 9*256kB (UE) 4*512kB (UE) 4*1024kB (UME) 6*2048kB (UME) 516*4096kB (UM) = 2146996kB [ 1469.351614] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1469.451636] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1469.492369] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1469.497449] Node 0 DMA32 free:34828kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:64kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:448kB local_pcp:112kB free_cma:0kB [ 1469.510137] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1469.541264] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1469.591718] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1469.611734] CPU: 1 PID: 23799 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1469.620180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1469.629540] Call Trace: [ 1469.632135] dump_stack+0x13e/0x194 [ 1469.635767] warn_alloc.cold+0x96/0x1af [ 1469.639744] ? zone_watermark_ok_safe+0x280/0x280 [ 1469.644704] ? wait_for_completion+0x390/0x390 [ 1469.649289] __alloc_pages_slowpath+0x2114/0x26c0 [ 1469.654145] ? warn_alloc+0xf0/0xf0 [ 1469.657771] ? find_held_lock+0x2d/0x110 [ 1469.660059] lowmem_reserve[]: [ 1469.661823] ? fs_reclaim_acquire+0x10/0x10 [ 1469.661826] 0 0 [ 1469.664927] __alloc_pages_nodemask+0x5d3/0x700 [ 1469.669226] 0 [ 1469.671193] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1469.671200] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1469.671209] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1469.671228] alloc_pages_current+0xe7/0x1e0 [ 1469.696997] kvm_mmu_create+0xd1/0x1c0 [ 1469.700899] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1469.705217] ? alloc_pages_current+0xef/0x1e0 [ 1469.709716] kvm_vcpu_init+0x26d/0x360 [ 1469.710065] 0 0 [ 1469.713602] vmx_create_vcpu+0xf3/0x2900 [ 1469.713618] ? __mutex_unlock_slowpath+0x75/0x780 [ 1469.715578] Node 0 [ 1469.719624] ? futex_wake+0x11c/0x3d0 [ 1469.730473] ? handle_rdmsr+0x6b0/0x6b0 [ 1469.734455] kvm_vm_ioctl+0x49c/0x1430 [ 1469.738351] ? __lock_acquire+0x5f7/0x4620 [ 1469.742591] ? kvm_vcpu_release+0xa0/0xa0 [ 1469.746740] ? trace_hardirqs_on+0x10/0x10 [ 1469.750069] Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1469.750972] ? trace_hardirqs_on+0x10/0x10 [ 1469.780014] ? save_trace+0x290/0x290 [ 1469.783820] ? __might_fault+0x104/0x1b0 [ 1469.788014] ? kvm_vcpu_release+0xa0/0xa0 [ 1469.792176] do_vfs_ioctl+0x75a/0xfe0 [ 1469.795993] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1469.800759] ? ioctl_preallocate+0x1a0/0x1a0 [ 1469.805179] ? security_file_ioctl+0x76/0xb0 [ 1469.809586] ? security_file_ioctl+0x83/0xb0 [ 1469.814008] SyS_ioctl+0x7f/0xb0 [ 1469.817378] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1469.821361] do_syscall_64+0x1d5/0x640 [ 1469.825254] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1469.830057] lowmem_reserve[]: [ 1469.830435] RIP: 0033:0x45c849 [ 1469.830437] 0 0 [ 1469.833527] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1469.836735] 0 [ 1469.838695] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1469.855477] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1469.862751] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1469.870020] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1469.870070] warn_alloc_show_mem: 1 callbacks suppressed [ 1469.870074] Mem-Info: [ 1469.877276] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1469.913773] 0 0 [ 1469.915518] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1469.915806] Node 1 Normal free:2146968kB min:53612kB low:67012kB high:80412kB active_anon:1216892kB inactive_anon:16kB active_file:28796kB inactive_file:24248kB unevictable:0kB writepending:0kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12448kB pagetables:28296kB bounce:0kB free_pcp:1244kB local_pcp:624kB free_cma:0kB [ 1469.969861] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1469.994373] active_anon:796988 inactive_anon:200 isolated_anon:0 [ 1469.994373] active_file:7215 inactive_file:6064 isolated_file:0 [ 1469.994373] unevictable:0 dirty:22 writeback:0 unstable:0 [ 1469.994373] slab_reclaimable:12529 slab_unreclaimable:132762 [ 1469.994373] mapped:59097 shmem:529 pagetables:16290 bounce:0 [ 1469.994373] free:548199 free_pcp:413 free_cma:0 [ 1470.043904] 13807 total pagecache pages [ 1470.067846] 0 pages in swap cache [ 1470.080294] lowmem_reserve[]: 0 0 0 0 0 [ 1470.084332] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1470.086758] Swap cache stats: add 0, delete 0, find 0/0 [ 1470.133730] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:68kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208968kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1470.175988] Free swap = 0kB [ 1470.189235] Total swap = 0kB [ 1470.204221] 1965979 pages RAM [ 1470.207099] Node 0 DMA32: 390*4kB (UME) 1471*8kB (UMEH) 790*16kB (UMEH) 248*32kB (UMEH) 9*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34480kB [ 1470.219623] 0 pages HighMem/MovableOnly [ 1470.237681] 339049 pages reserved [ 1470.254886] 0 pages cma reserved [ 1470.280262] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1470.307087] Node 1 active_anon:1216768kB inactive_anon:16kB active_file:28796kB inactive_file:24272kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27336kB dirty:64kB writeback:0kB shmem:912kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 07:19:10 executing program 5: r0 = openat$cuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/cuse\x00', 0x2, 0x0) read$FUSE(r0, &(0x7f0000000240), 0x2305e2b7) write$FUSE_DIRENTPLUS(r0, &(0x7f0000001bc0)=ANY=[@ANYBLOB="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", @ANYRES32, @ANYRES32, @ANYBLOB="04000000e0ffffff00000000000000000000000002000000000000000900000003000000242d656d307070703000000000000000000000000000000002000000000000000100000000000000070000000000000080ffffff020000000400000000000000040000000000000000b8c91e000000000900000000000000000001000000000002000000000000008f550000ff000000020000000800000000000000", @ANYRES32, @ANYRES32, @ANYBLOB="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", @ANYRES32, @ANYRES32, @ANYBLOB="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", @ANYRES32, @ANYRES32, @ANYBLOB="0300000000000000000000000600000000000000080000000400000003000000080000003a6c6f000000000004000000000000000000000000000100010000000000000001000080000000003c0600000000000001000000000000000800000000000000070000000000000009000000000000005106000000000000281a4225000000000002000007000000040000000300000002000000", @ANYRES32=0xee01, @ANYRES32, @ANYBLOB="01000000ffff0000000000000500ab0500000000000000000000000006000000060000007b2370707030000001000000000000000100000000000000ffffffff000000000100010000000000050000000000000001000000000000002ec62c37000000000700000000000000ac58000000000000010000000000000081000000000000000500000400010000090000000300000000040000083e190772a8fbb9f7fcddd8ba37627d3df6f072fa08a398f31f972cf09791c2ca950652f520349dc4b857867fc3e0f51938d3836dc7", @ANYRES32, @ANYRES32, @ANYBLOB="2eea000007000000000000000200000000000000fffffeffffffffff5c00000001000080656d306e6f64657693776c616e300000"], 0x418) [ 1470.370081] Node 1 Normal: 24*4kB (UME) 350*8kB (UM) 258*16kB (UME) 158*32kB (U) 39*64kB (U) 2*128kB (UE) 8*256kB (UE) 4*512kB (UE) 4*1024kB (UME) 6*2048kB (UME) 516*4096kB (UM) = 2148848kB 07:19:10 executing program 5: mknod(&(0x7f0000000000)='./file0\x00', 0x1, 0x0) execve(&(0x7f0000000680)='./file0\x00', &(0x7f0000000900)=[&(0x7f00000006c0)='\x00', &(0x7f0000000700)='wlan0\x00', &(0x7f0000000740)='bond_slave_1\x00', &(0x7f0000000780)='veth1_to_bond\x00', &(0x7f00000007c0)='/dev/bus/usb/00#/00#\x00', &(0x7f0000000800)='nodev\x19}[ppp1\x00', &(0x7f0000000840)='/dev/dlm-control\x00', &(0x7f0000000880)='/dev/bus/usb/00#/00#\x00', &(0x7f00000008c0)='security\x8a/\x00'], &(0x7f0000000a80)=[&(0x7f0000000980)='/dev/vcs\x00', &(0x7f00000009c0)='\x00', &(0x7f0000000a00)='bond_slave_1\x00', &(0x7f0000000a40)='/dev/vcs\x00']) [ 1470.428704] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1470.446167] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1470.485893] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1470.545301] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1470.579194] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1470.624208] 13850 total pagecache pages [ 1470.635057] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1470.647185] 0 pages in swap cache [ 1470.663970] Swap cache stats: add 0, delete 0, find 0/0 07:19:10 executing program 5: timer_create(0x0, &(0x7f0000000040)={0x0, 0x2, 0x0, @thr={&(0x7f0000001300)="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", 0x0}}, 0x0) syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000380)=[{&(0x7f0000000100)="eb3c906d6b66732e666174000204010002000270fff8", 0xffdf}], 0x0, 0x0) open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0) perf_event_open(0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') getdents64(r0, &(0x7f0000000280)=""/4096, 0x1000) r1 = open(&(0x7f00000001c0)='./bus\x00', 0x151042, 0x0) openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/vmstat\x00', 0x0, 0x0) sendfile(r1, 0xffffffffffffffff, 0x0, 0x4000000000010046) sched_setaffinity(0x0, 0x8, &(0x7f0000000140)=0x5) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) [ 1470.670713] Node 0 DMA32 free:34480kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:68kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:576kB local_pcp:128kB free_cma:0kB [ 1470.748435] Free swap = 0kB [ 1470.760334] Total swap = 0kB [ 1470.763401] 1965979 pages RAM [ 1470.766504] 0 pages HighMem/MovableOnly [ 1470.808073] 339049 pages reserved [ 1470.826588] 0 pages cma reserved 07:19:10 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhost-vsock\x00', 0x2, 0x0) dup2(r0, r1) [ 1470.865723] lowmem_reserve[]: 0 0 0 0 0 07:19:10 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000100)=ANY=[@ANYBLOB="7287eba49bf60a3f49a3d9fde68a5a046863886757457d6cc7cd003416e38d77a01455590e6f165679aafe5bb0c0842905571a721764e315ed505e26082f919e3b56024d434cc0957aeb3e055d63c80f69b03a2f88288555f26a086cec49297af1c3702b7d20506f1ef151c75e67c145b38414589035fe052da77b5cfdf2dffcd74ffbc156110290680765c4198618d2bd813b67c4eb7b51e150f1c31c211fe4947e2c3fb1ccace57147c58404fcd5098657b5401814fcbdcaccfdd296c924ab1c65"], 0x1) [ 1470.907583] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1471.002161] lowmem_reserve[]: 0 0 0 0 0 [ 1471.046771] Node 1 Normal free:2148544kB min:53612kB low:67012kB high:80412kB active_anon:1216744kB inactive_anon:104kB active_file:28820kB inactive_file:24384kB unevictable:0kB writepending:124kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12512kB pagetables:28328kB bounce:0kB free_pcp:784kB local_pcp:532kB free_cma:0kB [ 1471.233778] lowmem_reserve[]: 0 0 0 0 0 [ 1471.252713] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB 07:19:11 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x0, 0x0, 0x0) r0 = socket$pptp(0x18, 0x1, 0x2) r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/vhost-vsock\x00', 0x2, 0x0) dup2(r0, r1) [ 1471.337684] Mem-Info: [ 1471.352152] active_anon:796958 inactive_anon:199 isolated_anon:0 [ 1471.352152] active_file:7229 inactive_file:6081 isolated_file:7 [ 1471.352152] unevictable:0 dirty:38 writeback:0 unstable:0 [ 1471.352152] slab_reclaimable:12526 slab_unreclaimable:132171 [ 1471.352152] mapped:59117 shmem:530 pagetables:16284 bounce:0 [ 1471.352152] free:548850 free_pcp:456 free_cma:0 [ 1471.391733] Node 0 DMA32: 390*4kB (UME) 1471*8kB (UMEH) 790*16kB (UMEH) 248*32kB (UMEH) 9*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34480kB [ 1471.436921] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1471.493055] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1471.512244] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1471.543721] CPU: 0 PID: 23851 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1471.551655] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1471.561012] Call Trace: [ 1471.563608] dump_stack+0x13e/0x194 [ 1471.564296] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:36kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):28kB mapped:208968kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1471.567243] warn_alloc.cold+0x96/0x1af [ 1471.567255] ? zone_watermark_ok_safe+0x280/0x280 [ 1471.603817] ? wait_for_completion+0x390/0x390 [ 1471.608427] __alloc_pages_slowpath+0x2114/0x26c0 [ 1471.613289] ? warn_alloc+0xf0/0xf0 [ 1471.616922] ? find_held_lock+0x2d/0x110 [ 1471.620993] ? fs_reclaim_acquire+0x10/0x10 [ 1471.625325] __alloc_pages_nodemask+0x5d3/0x700 [ 1471.630000] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1471.635022] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1471.639869] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1471.644898] alloc_pages_current+0xe7/0x1e0 [ 1471.649246] kvm_mmu_create+0xd1/0x1c0 [ 1471.653145] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1471.657475] ? alloc_pages_current+0xef/0x1e0 [ 1471.662120] kvm_vcpu_init+0x26d/0x360 [ 1471.666020] vmx_create_vcpu+0xf3/0x2900 [ 1471.670099] ? __mutex_unlock_slowpath+0x75/0x780 [ 1471.674956] ? futex_wake+0x11c/0x3d0 [ 1471.678773] ? handle_rdmsr+0x6b0/0x6b0 [ 1471.682759] kvm_vm_ioctl+0x49c/0x1430 [ 1471.686661] ? __lock_acquire+0x5f7/0x4620 [ 1471.690903] ? kvm_vcpu_release+0xa0/0xa0 [ 1471.695059] ? trace_hardirqs_on+0x10/0x10 [ 1471.699307] ? trace_hardirqs_on+0x10/0x10 [ 1471.703552] ? save_trace+0x290/0x290 [ 1471.707355] ? __might_fault+0x104/0x1b0 [ 1471.711437] ? kvm_vcpu_release+0xa0/0xa0 [ 1471.715594] do_vfs_ioctl+0x75a/0xfe0 [ 1471.719488] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1471.724251] ? ioctl_preallocate+0x1a0/0x1a0 [ 1471.728678] ? security_file_ioctl+0x76/0xb0 [ 1471.732049] Node 1 active_anon:1216872kB inactive_anon:12kB active_file:28880kB inactive_file:24316kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27400kB dirty:148kB writeback:0kB shmem:916kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1471.733608] ? security_file_ioctl+0x83/0xb0 [ 1471.733625] SyS_ioctl+0x7f/0xb0 [ 1471.769003] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1471.772993] do_syscall_64+0x1d5/0x640 [ 1471.776895] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1471.782085] RIP: 0033:0x45c849 [ 1471.785277] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 07:19:11 executing program 5: perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, @perf_config_ext}, 0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xbfffffffffffffff, 0xffffffffffffffff, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xc, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x11, 0x1a001000050}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x7}, @exit]}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) [ 1471.792990] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1471.800263] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1471.807624] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1471.814902] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1471.822281] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1471.863780] Node 1 Normal: 41*4kB (UM) 1*8kB (U) 226*16kB (UME) 165*32kB (U) 42*64kB (UM) 5*128kB (UME) 7*256kB (UE) 5*512kB (UME) 3*1024kB (UE) 6*2048kB (UME) 516*4096kB (UM) = 2145644kB [ 1471.927981] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1471.962177] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB 07:19:12 executing program 5: perf_event_open(&(0x7f0000000340)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080)='/dev/kvm\x00', 0x0, 0x0) socket$inet_smc(0x2b, 0x1, 0x0) r1 = socket$inet_udplite(0x2, 0x2, 0x88) getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0}, &(0x7f0000cab000)=0xc) setreuid(0x0, r2) mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x5c831, 0xffffffffffffffff, 0x0) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r4 = socket(0x0, 0x0, 0x0) creat(0x0, 0x0) connect$inet6(0xffffffffffffffff, 0x0, 0x0) r5 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f00001da000/0x18000)=nil, 0x0, 0xfffffe72, 0x0, 0x0, 0xa00000000000000) r6 = syz_genetlink_get_family_id$batadv(&(0x7f00000000c0)='batadv\x00') r7 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r7, 0x8933, &(0x7f0000000400)={'batadv0\x00', 0x0}) r9 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$BATADV_CMD_GET_MESH(r9, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x24, r6, 0xf, 0x0, 0x0, {0xf, 0x10, 0x60}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r8}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}]}, 0x24}}, 0x0) sendmsg$BATADV_CMD_GET_VLAN(r4, &(0x7f0000000100)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={&(0x7f0000000040)={0x14, r6, 0x20, 0x70bd28, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x11}, 0x20040844) [ 1472.030508] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1472.063160] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1472.087494] Node 0 DMA32 free:35100kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:60kB inactive_file:12kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:924kB local_pcp:708kB free_cma:0kB [ 1472.089445] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1472.290107] lowmem_reserve[]: 0 0 0 0 0 [ 1472.294257] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1472.367171] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1472.420608] lowmem_reserve[]: 0 0 0 0 0 [ 1472.433626] 13851 total pagecache pages [ 1472.433978] Node 1 [ 1472.453390] 0 pages in swap cache 07:19:12 executing program 5: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000080)='/dev/uinput\x00', 0x0, 0x0) ioctl$UI_ABS_SETUP(r0, 0x401c5504, &(0x7f00000000c0)={0xccf}) [ 1472.457948] Normal free:2146800kB min:53612kB low:67012kB high:80412kB active_anon:1217084kB inactive_anon:12kB active_file:28880kB inactive_file:24336kB unevictable:0kB writepending:120kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12608kB pagetables:28328kB bounce:0kB free_pcp:616kB local_pcp:512kB free_cma:0kB [ 1472.478663] Swap cache stats: add 0, delete 0, find 0/0 [ 1472.584246] Free swap = 0kB [ 1472.597338] Total swap = 0kB [ 1472.609938] 1965979 pages RAM [ 1472.622026] 0 pages HighMem/MovableOnly [ 1472.635343] lowmem_reserve[]: 0 0 0 0 0 [ 1472.655617] 339049 pages reserved [ 1472.659107] 0 pages cma reserved [ 1472.687419] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB 07:19:12 executing program 5: r0 = socket(0x200000000000011, 0xa, 0x0) getsockname$packet(r0, 0x0, 0x0) [ 1472.793194] Node 0 DMA32: 804*4kB (UME) 1475*8kB (UMEH) 794*16kB (UMEH) 248*32kB (UMEH) 9*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 36232kB 07:19:12 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x400, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080)='/dev/full\x00', 0x220100, 0x0) setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r3, 0x84, 0x1e, &(0x7f00000000c0)=0x7fffffff, 0x4) ioctl$SOUND_MIXER_READ_DEVMASK(0xffffffffffffffff, 0x80044dfe, &(0x7f0000000100)) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b75fb3488fd8015bba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377aba09e7b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047706865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r4 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) r5 = dup2(r4, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) r8 = fcntl$dupfd(r7, 0x0, r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) ioctl$KVM_SET_NR_MMU_PAGES(r8, 0xae44, 0x4) dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB="7f"], 0x1) [ 1472.881646] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1472.948131] Node 1 Normal: 68*4kB (UME) 249*8kB (UM) 203*16kB (UM) 184*32kB (U) 43*64kB (UME) 2*128kB (UM) 6*256kB (UE) 5*512kB (UME) 3*1024kB (UE) 6*2048kB (UME) 516*4096kB (UM) = 2147400kB [ 1473.050359] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1473.103272] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1473.147852] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1473.205206] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1473.245984] 13854 total pagecache pages [ 1473.270009] 0 pages in swap cache [ 1473.278692] Mem-Info: [ 1473.290669] Swap cache stats: add 0, delete 0, find 0/0 [ 1473.294267] active_anon:796988 inactive_anon:200 isolated_anon:0 [ 1473.294267] active_file:7231 inactive_file:6087 isolated_file:7 [ 1473.294267] unevictable:0 dirty:25 writeback:0 unstable:0 [ 1473.294267] slab_reclaimable:12522 slab_unreclaimable:132330 [ 1473.294267] mapped:59098 shmem:530 pagetables:16256 bounce:0 [ 1473.294267] free:548805 free_pcp:332 free_cma:0 [ 1473.321823] Free swap = 0kB [ 1473.359901] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1473.395196] Total swap = 0kB [ 1473.411265] 1965979 pages RAM [ 1473.415774] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1473.431109] 0 pages HighMem/MovableOnly [ 1473.445224] CPU: 1 PID: 23908 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1473.453263] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1473.462992] Call Trace: [ 1473.465605] dump_stack+0x13e/0x194 [ 1473.469243] warn_alloc.cold+0x96/0x1af [ 1473.473233] ? zone_watermark_ok_safe+0x280/0x280 [ 1473.478099] ? wait_for_completion+0x390/0x390 [ 1473.482694] __alloc_pages_slowpath+0x2114/0x26c0 [ 1473.487557] ? warn_alloc+0xf0/0xf0 [ 1473.491193] ? find_held_lock+0x2d/0x110 [ 1473.495265] ? fs_reclaim_acquire+0x10/0x10 [ 1473.496806] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:36kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):28kB mapped:208968kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1473.499608] __alloc_pages_nodemask+0x5d3/0x700 [ 1473.499623] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1473.499631] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1473.499643] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1473.547047] alloc_pages_current+0xe7/0x1e0 [ 1473.551380] kvm_mmu_create+0xd1/0x1c0 [ 1473.555310] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1473.559644] ? alloc_pages_current+0xef/0x1e0 [ 1473.564156] kvm_vcpu_init+0x26d/0x360 [ 1473.568055] vmx_create_vcpu+0xf3/0x2900 [ 1473.572159] ? __mutex_unlock_slowpath+0x75/0x780 [ 1473.577013] ? futex_wake+0x11c/0x3d0 [ 1473.580828] ? handle_rdmsr+0x6b0/0x6b0 [ 1473.584814] kvm_vm_ioctl+0x49c/0x1430 [ 1473.588719] ? __lock_acquire+0x5f7/0x4620 [ 1473.593138] ? kvm_vcpu_release+0xa0/0xa0 [ 1473.597293] ? trace_hardirqs_on+0x10/0x10 [ 1473.601536] ? trace_hardirqs_on+0x10/0x10 [ 1473.605784] ? save_trace+0x290/0x290 [ 1473.609596] ? __might_fault+0x104/0x1b0 [ 1473.613671] ? kvm_vcpu_release+0xa0/0xa0 [ 1473.617833] do_vfs_ioctl+0x75a/0xfe0 [ 1473.621646] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1473.626413] ? ioctl_preallocate+0x1a0/0x1a0 [ 1473.630836] ? security_file_ioctl+0x76/0xb0 [ 1473.635252] ? security_file_ioctl+0x83/0xb0 [ 1473.639671] SyS_ioctl+0x7f/0xb0 [ 1473.643041] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1473.647024] do_syscall_64+0x1d5/0x640 [ 1473.650918] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1473.656103] RIP: 0033:0x45c849 [ 1473.657457] Node 1 active_anon:1216892kB inactive_anon:16kB active_file:28888kB inactive_file:24340kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27424kB dirty:0kB writeback:0kB shmem:916kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1473.659287] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1473.659302] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1473.659309] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1473.659313] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1473.659321] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1473.659329] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1473.744327] 339049 pages reserved [ 1473.761505] 0 pages cma reserved 07:19:13 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r2, 0x1, 0x1000000000000f, &(0x7f0000000180)=0x57bb, 0x2ca) bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000200)={r1, 0xc0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=0x3, 0x0, 0x0, 0x0, &(0x7f00000000c0)={0x2, 0x5}, 0x0, 0x0, &(0x7f0000000100)={0x4, 0x2, 0x2, 0x80000000}, &(0x7f0000000140)=0x5, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)}}, 0x10) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x0, &(0x7f0000000340)=ANY=[@ANYRES16=r2], &(0x7f0000000080)='GPL\x00', 0x1, 0xc3, &(0x7f0000000240)=""/195, 0x0, 0x0, [], 0x0, 0x12, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0xfffffffe}, 0x10}, 0x78) setsockopt$sock_attach_bpf(r2, 0x1, 0x34, &(0x7f0000009000)=r3, 0x4) 07:19:13 executing program 5: socketpair$tipc(0x1e, 0x0, 0x0, &(0x7f0000000200)) close(0xffffffffffffffff) r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x203, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r2 = socket$kcm(0x2, 0x3, 0x2) sendmsg$inet(r2, &(0x7f000000c280)={&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000140)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @multicast1}}}], 0x20}, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, r1, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x5a) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='memory.events\x00', 0x7a05, 0x1700) ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40305839, &(0x7f0000000240)=0xab) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r3) r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r5 = openat$cgroup_int(r4, &(0x7f0000000100)='memory.high\x00', 0x2, 0x0) write$cgroup_int(r5, &(0x7f0000000040), 0x12) 07:19:13 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) connect$rds(r3, &(0x7f0000000080)={0x2, 0x4e23, @empty}, 0x10) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = fcntl$dupfd(r5, 0x0, r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) setsockopt$inet_udp_encap(r6, 0x11, 0x64, &(0x7f00000000c0)=0x1, 0x4) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) r8 = fcntl$dupfd(r7, 0x0, r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) getsockopt$inet_sctp_SCTP_I_WANT_MAPPED_V4_ADDR(r8, 0x84, 0xc, &(0x7f0000000100), &(0x7f0000000140)=0x4) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) [ 1473.877754] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1473.955084] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1474.028226] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1474.060090] CPU: 0 PID: 23912 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1474.068023] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 07:19:14 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r1, 0x1, 0x1000000000000f, &(0x7f0000000180)=0x57bb, 0x4) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0xb, 0x15, &(0x7f0000000340)=ANY=[@ANYBLOB="b700000000000000070000000000000095000000000000006681eadd021316fc78e2e8924f8b8bc08d2462379d2b36cfda626a978f53cc9d39d52452a220abef29cae97507e27b3664047d635f49e70656988f0bc9ab086ce0488c88ebea1f3f7421feb1615fe3225d4aa05bae26470409896298e0b2dae2823e1d7162c59b509969f682c96c8b7c03a3a299fb43042bb2b6362c5880dc714ea98df2e9d83441cb9b0290965eb53fece60022ad"], &(0x7f0000000080)='GPL\x00', 0x1, 0xc3, &(0x7f0000000240)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0x0, 0x7}, 0x10}, 0x78) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r4, 0x0, r4) recvmsg(r4, &(0x7f0000000800)={&(0x7f00000000c0)=@pppol2tpv3in6, 0x80, &(0x7f00000006c0)=[{&(0x7f0000000400)=""/210, 0xd2}, {&(0x7f0000000500)=""/173, 0xad}, {&(0x7f0000000040)=""/56, 0x38}, {&(0x7f0000000140)=""/36, 0x24}, {&(0x7f00000001c0)=""/102, 0x66}, {&(0x7f00000005c0)=""/212, 0xd4}], 0x6, &(0x7f0000000740)=""/172, 0xac}, 0x80010002) setsockopt$sock_attach_bpf(r2, 0x1, 0x34, &(0x7f0000009000)=r3, 0x4) ioctl$EXT4_IOC_PRECACHE_EXTENTS(r2, 0x6612) [ 1474.077579] Call Trace: [ 1474.079176] raw_sendmsg: syz-executor.5 forgot to set AF_INET. Fix it! [ 1474.080178] dump_stack+0x13e/0x194 [ 1474.080196] warn_alloc.cold+0x96/0x1af [ 1474.080205] ? zone_watermark_ok_safe+0x280/0x280 [ 1474.080223] ? wait_for_completion+0x390/0x390 [ 1474.080235] __alloc_pages_slowpath+0x2114/0x26c0 [ 1474.080257] ? warn_alloc+0xf0/0xf0 [ 1474.080267] ? find_held_lock+0x2d/0x110 [ 1474.080278] ? fs_reclaim_acquire+0x10/0x10 [ 1474.080297] __alloc_pages_nodemask+0x5d3/0x700 [ 1474.080309] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1474.080317] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1474.080326] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1474.080346] alloc_pages_current+0xe7/0x1e0 [ 1474.080359] kvm_mmu_create+0xd1/0x1c0 [ 1474.080374] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1474.152886] ? alloc_pages_current+0xef/0x1e0 [ 1474.157401] kvm_vcpu_init+0x26d/0x360 [ 1474.161302] vmx_create_vcpu+0xf3/0x2900 [ 1474.165388] ? __mutex_unlock_slowpath+0x75/0x780 [ 1474.170266] ? futex_wake+0x11c/0x3d0 [ 1474.175473] ? handle_rdmsr+0x6b0/0x6b0 [ 1474.179468] kvm_vm_ioctl+0x49c/0x1430 [ 1474.183380] ? __lock_acquire+0x5f7/0x4620 [ 1474.187631] ? kvm_vcpu_release+0xa0/0xa0 [ 1474.191791] ? trace_hardirqs_on+0x10/0x10 [ 1474.196128] ? trace_hardirqs_on+0x10/0x10 [ 1474.200465] ? save_trace+0x290/0x290 [ 1474.204388] ? __might_fault+0x104/0x1b0 [ 1474.208465] ? kvm_vcpu_release+0xa0/0xa0 [ 1474.212629] do_vfs_ioctl+0x75a/0xfe0 [ 1474.216436] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1474.221200] ? ioctl_preallocate+0x1a0/0x1a0 [ 1474.225626] ? security_file_ioctl+0x76/0xb0 [ 1474.230043] ? security_file_ioctl+0x83/0xb0 [ 1474.234467] SyS_ioctl+0x7f/0xb0 [ 1474.237839] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1474.241824] do_syscall_64+0x1d5/0x640 [ 1474.245729] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1474.251016] RIP: 0033:0x45c849 [ 1474.254205] RSP: 002b:00007f4840a2ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1474.261932] RAX: ffffffffffffffda RBX: 00007f4840a2f6d4 RCX: 000000000045c849 [ 1474.269218] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1474.277016] RBP: 000000000076bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 1474.284357] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1474.291610] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bfac [ 1474.347154] lowmem_reserve[]: 0 2557 2557 2557 2557 07:19:14 executing program 5: socketpair$tipc(0x1e, 0x0, 0x0, &(0x7f0000000200)) close(0xffffffffffffffff) r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x203, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x80}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) r2 = socket$kcm(0x2, 0x3, 0x2) sendmsg$inet(r2, &(0x7f000000c280)={&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000140)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @multicast1}}}], 0x20}, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, r1, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x5a) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='memory.events\x00', 0x7a05, 0x1700) ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40305839, &(0x7f0000000240)=0xab) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r3) r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r5 = openat$cgroup_int(r4, &(0x7f0000000100)='memory.high\x00', 0x2, 0x0) write$cgroup_int(r5, &(0x7f0000000040), 0x12) [ 1474.393403] Node 0 DMA32 free:36588kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:48kB inactive_file:12kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:236kB local_pcp:108kB free_cma:0kB [ 1474.616797] lowmem_reserve[]: 0 0 0 0 0 [ 1474.630144] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1474.767165] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1474.848733] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1474.867444] lowmem_reserve[]: 0 0 0 0 0 [ 1474.895059] CPU: 0 PID: 23939 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1474.902983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1474.912339] Call Trace: [ 1474.914936] dump_stack+0x13e/0x194 [ 1474.918571] warn_alloc.cold+0x96/0x1af [ 1474.922548] ? zone_watermark_ok_safe+0x280/0x280 [ 1474.927409] ? wait_for_completion+0x390/0x390 [ 1474.932002] __alloc_pages_slowpath+0x2114/0x26c0 [ 1474.936860] ? warn_alloc+0xf0/0xf0 [ 1474.940496] ? find_held_lock+0x2d/0x110 [ 1474.944564] ? fs_reclaim_acquire+0x10/0x10 [ 1474.948904] __alloc_pages_nodemask+0x5d3/0x700 [ 1474.953598] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1474.958622] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1474.963475] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1474.968511] alloc_pages_current+0xe7/0x1e0 [ 1474.972854] kvm_mmu_create+0xd1/0x1c0 [ 1474.976779] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1474.981108] ? alloc_pages_current+0xef/0x1e0 [ 1474.985611] kvm_vcpu_init+0x26d/0x360 [ 1474.989512] vmx_create_vcpu+0xf3/0x2900 [ 1474.993583] ? __mutex_unlock_slowpath+0x75/0x780 [ 1474.998432] ? futex_wake+0x11c/0x3d0 [ 1475.002236] ? handle_rdmsr+0x6b0/0x6b0 [ 1475.006257] kvm_vm_ioctl+0x49c/0x1430 [ 1475.010189] ? __lock_acquire+0x5f7/0x4620 [ 1475.014432] ? kvm_vcpu_release+0xa0/0xa0 [ 1475.018589] ? trace_hardirqs_on+0x10/0x10 [ 1475.022836] ? trace_hardirqs_on+0x10/0x10 [ 1475.027080] ? save_trace+0x290/0x290 [ 1475.030886] ? __might_fault+0x104/0x1b0 [ 1475.034962] ? kvm_vcpu_release+0xa0/0xa0 [ 1475.039212] do_vfs_ioctl+0x75a/0xfe0 [ 1475.043021] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1475.047783] ? ioctl_preallocate+0x1a0/0x1a0 [ 1475.052207] ? security_file_ioctl+0x76/0xb0 [ 1475.056624] ? security_file_ioctl+0x83/0xb0 [ 1475.061044] SyS_ioctl+0x7f/0xb0 [ 1475.064419] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1475.068399] do_syscall_64+0x1d5/0x640 [ 1475.072300] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1475.077494] RIP: 0033:0x45c849 [ 1475.080685] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1475.088410] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1475.095681] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1475.102955] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1475.110230] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1475.117505] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1475.139135] Node 1 Normal free:2146384kB min:53612kB low:67012kB high:80412kB active_anon:1216740kB inactive_anon:8kB active_file:28892kB inactive_file:24364kB unevictable:0kB writepending:132kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12448kB pagetables:28176kB bounce:0kB free_pcp:1016kB local_pcp:348kB free_cma:0kB [ 1475.237797] lowmem_reserve[]: 0 0 0 0 0 [ 1475.251830] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1475.309828] Node 0 DMA32: 757*4kB (UME) 1479*8kB (UMEH) 795*16kB (UMEH) 248*32kB (UMEH) 9*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 36092kB [ 1475.320169] Mem-Info: [ 1475.326957] active_anon:796975 inactive_anon:198 isolated_anon:0 [ 1475.326957] active_file:7234 inactive_file:6090 isolated_file:8 [ 1475.326957] unevictable:0 dirty:17 writeback:5 unstable:0 [ 1475.326957] slab_reclaimable:12559 slab_unreclaimable:132610 [ 1475.326957] mapped:59073 shmem:528 pagetables:16297 bounce:0 [ 1475.326957] free:548467 free_pcp:409 free_cma:0 [ 1475.347174] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1475.444173] Node 1 Normal: 54*4kB (ME) 184*8kB (UME) 283*16kB (UME) 193*32kB (UME) 44*64kB (UME) 5*128kB (U) 3*256kB (UE) 3*512kB (UME) 3*1024kB (UE) 6*2048kB (UME) 516*4096kB (UM) = 2147048kB [ 1475.504706] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1475.534625] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1475.540156] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:44kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):32kB mapped:208968kB dirty:0kB writeback:8kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1475.555745] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1475.617823] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1475.649924] 13859 total pagecache pages [ 1475.667272] 0 pages in swap cache [ 1475.680328] Swap cache stats: add 0, delete 0, find 0/0 [ 1475.680486] Node 1 active_anon:1216740kB inactive_anon:8kB active_file:28892kB inactive_file:24364kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27324kB dirty:68kB writeback:12kB shmem:908kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1475.700678] Free swap = 0kB [ 1475.742902] Total swap = 0kB [ 1475.745960] 1965979 pages RAM [ 1475.759252] 0 pages HighMem/MovableOnly [ 1475.769360] 339049 pages reserved [ 1475.779450] 0 pages cma reserved 07:19:15 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = dup3(r0, r3, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r5, r4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000080)=ANY=[@ANYBLOB="9ed387a07058240e093c5570324cbab80b84034f53c9b623cf485f15fb33588645d393d61a0cfcfa5a6de70336b0283006217d599fe466b3bbb7593a6f8997302f"], 0x1) 07:19:15 executing program 3: socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/avc/cache_stats\x00', 0x0, 0x0) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r2, 0x1, 0x1000000000000f, &(0x7f0000000180)=0x57bb, 0x2ca) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="b700000000000000070000000000000095000000000000006681eadd021316fc78e2e8924f8b8bc08d2462379d2b36cfda626a978f53cc9d39d52452a220abef29cae97507e27b3664047d635f49e70656988f0bc9ab086ce0488c88ebea1f3f7421feb1615fe3225d4aa05bae26470409896298e0b2dae2823e1d7162c59b509969f682c96c8b7c03a3a299fb43042bb2b6362c5880dc714ea98df2e9d83441cb9b0290965eb53fece60022ad"], &(0x7f0000000080)='GPL\x00', 0x1, 0xc3, &(0x7f0000000240)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfd6e}, 0x48) setsockopt$sock_attach_bpf(r2, 0x1, 0x34, &(0x7f0000000040)=r3, 0x4) openat$snapshot(0xffffffffffffff9c, &(0x7f0000000100)='/dev/snapshot\x00', 0x1, 0x0) 07:19:15 executing program 5: socketpair$tipc(0x1e, 0x0, 0x0, &(0x7f0000000200)) close(0xffffffffffffffff) r0 = perf_event_open(&(0x7f0000000180)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x203, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext={0x80}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x26e1, 0x0) r2 = socket$kcm(0x2, 0x3, 0x2) sendmsg$inet(r2, &(0x7f000000c280)={&(0x7f0000000000)={0x2, 0x0, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000140)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @multicast1}}}], 0x20}, 0x0) bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000080)={0x0, r1, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x5a) r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='memory.events\x00', 0x7a05, 0x1700) ioctl$PERF_EVENT_IOC_PERIOD(r3, 0x40305839, &(0x7f0000000240)=0xab) ioctl$PERF_EVENT_IOC_SET_BPF(r0, 0x40042408, r3) r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r5 = openat$cgroup_int(r4, &(0x7f0000000100)='memory.high\x00', 0x2, 0x0) write$cgroup_int(r5, &(0x7f0000000040), 0x12) 07:19:16 executing program 5: bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xc, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x63, 0x11, 0x54}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call, @exit]}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) [ 1475.898788] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 07:19:16 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$SNDRV_SEQ_IOCTL_SUBSCRIBE_PORT(r4, 0x40505330, &(0x7f0000000080)={{0x1, 0x8}, {0x6, 0x2}, 0xf837, 0x4}) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r5 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r5, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB=' '], 0x1) 07:19:16 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r2, 0x1, 0x1000000000000f, &(0x7f0000000180)=0x57bb, 0x2ca) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x3, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x1, 0xc3, &(0x7f0000000240)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfd6e}, 0x48) setsockopt$sock_attach_bpf(r2, 0x1, 0x34, &(0x7f0000009000)=r3, 0x4) [ 1476.055708] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1476.084660] Node 0 DMA32 free:35968kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:72kB inactive_file:8kB unevictable:0kB writepending:12kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:792kB local_pcp:564kB free_cma:0kB [ 1476.266979] lowmem_reserve[]: 0 0 0 0 0 [ 1476.288021] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1476.375355] lowmem_reserve[]: 0 0 0 0 0 [ 1476.389498] Node 1 Normal free:2149120kB min:53612kB low:67012kB high:80412kB active_anon:1216652kB inactive_anon:20kB active_file:28884kB inactive_file:24400kB unevictable:0kB writepending:176kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12416kB pagetables:28128kB bounce:0kB free_pcp:1144kB local_pcp:492kB free_cma:0kB [ 1476.429219] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1476.485448] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1476.492654] lowmem_reserve[]: 0 0 0 0 0 [ 1476.500679] CPU: 0 PID: 23989 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1476.508588] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1476.511479] Node 0 [ 1476.517937] Call Trace: [ 1476.517957] dump_stack+0x13e/0x194 [ 1476.517972] warn_alloc.cold+0x96/0x1af [ 1476.517984] ? zone_watermark_ok_safe+0x280/0x280 [ 1476.535215] ? wait_for_completion+0x390/0x390 [ 1476.539811] __alloc_pages_slowpath+0x2114/0x26c0 [ 1476.544674] ? warn_alloc+0xf0/0xf0 [ 1476.545746] DMA: [ 1476.548299] ? find_held_lock+0x2d/0x110 [ 1476.548311] ? fs_reclaim_acquire+0x10/0x10 [ 1476.548329] __alloc_pages_nodemask+0x5d3/0x700 [ 1476.560238] 1*4kB [ 1476.563393] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1476.563401] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1476.563411] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1476.572893] (M) [ 1476.575427] alloc_pages_current+0xe7/0x1e0 [ 1476.575442] kvm_mmu_create+0xd1/0x1c0 [ 1476.590604] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1476.594927] ? alloc_pages_current+0xef/0x1e0 [ 1476.598716] 2*8kB (H) [ 1476.599422] kvm_vcpu_init+0x26d/0x360 [ 1476.599436] vmx_create_vcpu+0xf3/0x2900 [ 1476.609854] ? __mutex_unlock_slowpath+0x75/0x780 [ 1476.610580] 3*16kB [ 1476.614697] ? futex_wake+0x11c/0x3d0 [ 1476.614710] ? handle_rdmsr+0x6b0/0x6b0 [ 1476.614726] kvm_vm_ioctl+0x49c/0x1430 [ 1476.625483] (H) [ 1476.628582] ? __lock_acquire+0x5f7/0x4620 [ 1476.628594] ? kvm_vcpu_release+0xa0/0xa0 [ 1476.628605] ? trace_hardirqs_on+0x10/0x10 [ 1476.642748] 2*32kB (UH) 3*64kB [ 1476.643167] ? trace_hardirqs_on+0x10/0x10 [ 1476.643173] (UMH) [ 1476.646439] ? save_trace+0x290/0x290 [ 1476.646450] ? __might_fault+0x104/0x1b0 [ 1476.646467] ? kvm_vcpu_release+0xa0/0xa0 [ 1476.665422] do_vfs_ioctl+0x75a/0xfe0 [ 1476.669183] 3*128kB (UMH) [ 1476.669234] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1476.669247] ? ioctl_preallocate+0x1a0/0x1a0 [ 1476.679614] 2*256kB [ 1476.681228] ? security_file_ioctl+0x76/0xb0 [ 1476.681237] ? security_file_ioctl+0x83/0xb0 [ 1476.681252] SyS_ioctl+0x7f/0xb0 [ 1476.681260] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1476.681271] do_syscall_64+0x1d5/0x640 [ 1476.681286] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1476.687408] (UH) [ 1476.687992] RIP: 0033:0x45c849 [ 1476.704774] 2*512kB [ 1476.708766] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1476.708790] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1476.708794] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1476.708799] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1476.708804] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1476.708809] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1476.982332] (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1477.015245] Node 0 DMA32: 736*4kB (UME) 1474*8kB (UMEH) 795*16kB (UMEH) 248*32kB (UMEH) 9*64kB (UMH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 35968kB [ 1477.096182] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1477.149694] Node 1 Normal: 187*4kB (UME) 322*8kB (UME) 367*16kB (UME) 216*32kB (UME) 43*64kB (UE) 8*128kB (UM) 4*256kB (UE) 3*512kB (UME) 3*1024kB (UE) 6*2048kB (UME) 516*4096kB (UM) = 2151340kB [ 1477.212038] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1477.243007] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1477.276337] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1477.318707] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1477.356499] 13875 total pagecache pages [ 1477.376430] 0 pages in swap cache [ 1477.388875] Swap cache stats: add 0, delete 0, find 0/0 [ 1477.414157] Free swap = 0kB [ 1477.427678] Total swap = 0kB [ 1477.444895] 1965979 pages RAM [ 1477.466442] 0 pages HighMem/MovableOnly [ 1477.476800] warn_alloc_show_mem: 2 callbacks suppressed [ 1477.476804] Mem-Info: [ 1477.489134] 339049 pages reserved [ 1477.505577] 0 pages cma reserved [ 1477.515218] active_anon:796935 inactive_anon:200 isolated_anon:0 [ 1477.515218] active_file:7239 inactive_file:6106 isolated_file:0 07:19:17 executing program 4: r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r0, 0xae60) r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r1, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r1, 0xae80, 0x0) r2 = dup3(0xffffffffffffffff, r0, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r1, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r2, r1) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:19:17 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b75fb3488fd8015bba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377aba09e7b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047706865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) [ 1477.515218] unevictable:0 dirty:6 writeback:0 unstable:0 [ 1477.515218] slab_reclaimable:12600 slab_unreclaimable:132405 [ 1477.515218] mapped:59079 shmem:531 pagetables:16244 bounce:0 [ 1477.515218] free:548760 free_pcp:212 free_cma:0 07:19:17 executing program 5: mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x5c831, 0xffffffffffffffff, 0x0) io_getevents(0x0, 0x0, 0x0, 0x0, &(0x7f0000000000)) 07:19:17 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r2, 0x1, 0x1000000000000f, &(0x7f0000000180)=0x57bb, 0x2ca) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x1, 0xc3, &(0x7f0000000240)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfd6e}, 0x48) setsockopt$sock_attach_bpf(r2, 0x1, 0x34, &(0x7f0000009000)=r3, 0x4) 07:19:17 executing program 5: ioctl$TCSETS(0xffffffffffffffff, 0x40045431, 0x0) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) write$binfmt_elf64(r0, &(0x7f0000000100)={{0x1b, 0x5b, 0x7, 0x3b, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x72}, [{}]}, 0x78) 07:19:17 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) setxattr$security_selinux(&(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)='security.selinux\x00', &(0x7f0000000100)='system_u:object_r:udev_rules_t:s0\x00', 0x22, 0x3) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r2, 0x1, 0x1000000000000f, &(0x7f0000000180)=0x57bb, 0x2ca) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="b700000000000000070000000000000095000000000000006681eadd021316fc78e2e8924f8b8bc08d2462379d2b36cfda626a978f53cc9d39d52452a220abef29cae97507e27b3664047d635f49e70656988f0bc9ab086ce0488c88ebea1f3f7421feb1615fe3225d4aa05bae26470409896298e0b2dae2823e1d7162c59b509969f682c96c8b7c03a3a299fb43042bb2b6362c5880dc714ea98df2e9d83441cb9b0290965eb53fece60022ad"], &(0x7f0000000080)='GPL\x00', 0x1, 0xc3, &(0x7f0000000240)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfd6e}, 0x48) setsockopt$sock_attach_bpf(r2, 0x1, 0x34, &(0x7f0000009000)=r3, 0x4) [ 1477.796370] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:72kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208968kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 07:19:17 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) openat$ipvs(0xffffffffffffff9c, &(0x7f0000000080)='/proc/sys/net/ipv4/vs/nat_icmp_send\x00', 0x2, 0x0) openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/avc/cache_stats\x00', 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r6, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b75fb3488fd8015bba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377aba09e7b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047706865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) ioctl$KVM_RUN(r6, 0xae80, 0x0) r7 = dup3(r0, r5, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r6, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r7, r6) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r9 = dup(r8) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:19:17 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000200)={0x26, 'hash\x00', 0x0, 0x0, 'sha3-224\x00'}, 0x58) ioctl$EVIOCGVERSION(0xffffffffffffffff, 0x80044501, 0x0) r1 = accept4(r0, 0x0, 0x0, 0x0) r2 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='net/tcp6\x00') perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendfile(r1, r2, 0x0, 0x84c) 07:19:18 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_IRQ_LINE_STATUS(r1, 0xc008ae67, &(0x7f0000000180)={0x100, 0x9}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) r4 = dup2(r3, r2) r5 = openat$selinux_enforce(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/enforce\x00', 0x6801, 0x0) fstatfs(r5, &(0x7f00000000c0)=""/130) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)) r6 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) [ 1478.029222] Node 1 active_anon:1216880kB inactive_anon:16kB active_file:28884kB inactive_file:24424kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27448kB dirty:220kB writeback:0kB shmem:920kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 07:19:18 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r2, 0x1, 0x1000000000000f, &(0x7f0000000180)=0x57bb, 0x2ca) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x3, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x1, 0xc3, &(0x7f0000000240)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfd6e}, 0x48) setsockopt$sock_attach_bpf(r2, 0x1, 0x34, &(0x7f0000009000)=r3, 0x4) mmap$usbmon(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x4, 0x100010, r1, 0x6b6) sendmsg$nl_route(r1, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x200000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)=@ipv6_getrule={0x1c, 0x22, 0x1, 0x70bd2b, 0x25dfdbfe, {0xa, 0x4, 0x20, 0x9, 0xc0, 0x0, 0x0, 0x0, 0x4}, ["", ""]}, 0x1c}, 0x1, 0x0, 0x0, 0x24048010}, 0x800) [ 1478.239497] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1478.375728] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1478.434784] Node 0 DMA32 free:36424kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:36kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:680kB local_pcp:208kB free_cma:0kB [ 1478.656321] lowmem_reserve[]: 0 0 0 0 0 [ 1478.673253] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1478.809084] lowmem_reserve[]: 0 0 0 0 0 [ 1478.831631] Node 1 Normal free:2149380kB min:53612kB low:67012kB high:80412kB active_anon:1216464kB inactive_anon:24kB active_file:28884kB inactive_file:24428kB unevictable:0kB writepending:0kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12224kB pagetables:27904kB bounce:0kB free_pcp:1064kB local_pcp:432kB free_cma:0kB [ 1478.973808] lowmem_reserve[]: 0 0 0 0 0 [ 1478.994539] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1479.049915] Node 0 DMA32: 857*4kB (UM) 1445*8kB (UMH) 790*16kB (UMEH) 246*32kB (UMEH) 9*64kB (MEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 36076kB [ 1479.114651] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1479.159731] Node 1 Normal: 153*4kB (UME) 205*8kB (UME) 360*16kB (UME) 227*32kB (UME) 44*64kB (UE) 9*128kB (UM) 1*256kB (E) 3*512kB (UME) 3*1024kB (UE) 6*2048kB (UME) 516*4096kB (UM) = 2149932kB [ 1479.250114] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1479.259069] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1479.300097] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1479.333659] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1479.396873] 13878 total pagecache pages [ 1479.413591] 0 pages in swap cache [ 1479.417083] Swap cache stats: add 0, delete 0, find 0/0 [ 1479.454144] Free swap = 0kB [ 1479.457205] Total swap = 0kB [ 1479.480202] 1965979 pages RAM [ 1479.483349] 0 pages HighMem/MovableOnly [ 1479.487322] 339049 pages reserved [ 1479.524423] 0 pages cma reserved 07:19:19 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xcc, 0xcc, 0x3, [@var={0x3, 0x0, 0x0, 0xe, 0x5}, @volatile={0x0, 0x0, 0x0, 0x9, 0x2}, @func={0xd, 0x0, 0x0, 0xc, 0x5}, @var={0x5, 0x0, 0x0, 0xe, 0x1, 0x80000001}, @const={0xd, 0x0, 0x0, 0xa, 0x2}, @int={0x3, 0x0, 0x0, 0x1, 0x0, 0x78, 0x0, 0x75, 0x745f765563bc1154}, @fwd={0xb}, @enum={0x8, 0x4, 0x0, 0x6, 0x4, [{0xa, 0x1}, {0xb, 0x5aa9786d}, {0x0, 0x8}, {0x5, 0x1}]}, @typedef={0xe, 0x0, 0x0, 0x8, 0x3}, @enum={0x8, 0x5, 0x0, 0x6, 0x4, [{0xf, 0x4}, {0x8, 0x40}, {0x9, 0x20}, {0xf, 0x1}, {0x9, 0xd51}]}]}, {0x0, [0x30]}}, &(0x7f0000000180)=""/122, 0xe7, 0x7a}, 0x20) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000300)=ANY=[@ANYBLOB="727c33386a30c8ba7c44e004605bc8b19fb4c2264d52fc4c03953379ebef102444413d32f1b87d61bc0000000000000002d20e1ecc2f00559530ae5af3eaa2226a598ccaed23ad1bcf3f9ee35ad81f2d71dd7ac5558bd45f0c0000c5c969e1af7c2766e934c1fc3205bc1d5ef96b41da86e59023fd862c6ae07372925596cfa5f666608b34396d60e58e484374120b8a98f18c54970f7a8bed59985bbd63e2a96ab4077659c272abac92f20e15991bf511a0e3dfe1309a980f"], 0x1) sendmsg$RDMA_NLDEV_CMD_RES_CQ_GET(r3, &(0x7f0000000400)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f00000003c0)={&(0x7f0000000280)={0x48, 0x140c, 0x0, 0x70bd25, 0x25dfdbff, "", [@RDMA_NLDEV_ATTR_RES_CQN={0x8, 0x3d, 0x2}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x1}, @RDMA_NLDEV_ATTR_PORT_INDEX={0x8, 0x3, 0x2}, @RDMA_NLDEV_ATTR_RES_CQN={0x8, 0x3d, 0x5}]}, 0x48}}, 0x40000) 07:19:19 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) listen(r0, 0x4000000043) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r1, &(0x7f000087dffe)='F', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) shutdown(r1, 0x2) r2 = accept4(r0, 0x0, 0x0, 0x0) shutdown(r2, 0x1) 07:19:19 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r2, 0x1, 0x1000000000000f, &(0x7f0000000180)=0x57bb, 0x2ca) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x15, &(0x7f0000000340)=ANY=[@ANYBLOB="b700000000000000070000000000000095000000000000006681eadd021316fc78e2e8924f8b8bc08d2462379d2b36cfda626a978f53cc9d39d52452a220abef29cae97507e27b3664047d635f49e70656988f0bc9ab086ce0488c88ebea1f3f7421feb1615fe3225d4aa05bae26470409896298e0b2dae2823e1d7162c59b509969f682c96c8b7c03a3a299fb43042bb2b6362c5880dc714ea98df2e9d83441cb9b0290965eb53fece60022ad"], &(0x7f0000000040)='syzkaller\x00', 0x1, 0xc3, &(0x7f0000000240)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x78) setsockopt$sock_attach_bpf(r2, 0x1, 0x34, &(0x7f0000009000)=r3, 0x4) 07:19:19 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0x3ff, 0x0) setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000000c0)="69919bdd479b84acef501c70f1cb6f4689abd980396a3ea21177f3f3187163d146ae00319bbaa1d701162305a77ae0ebd1fdf78f30f22eca4da9df4badc42c46486cb16eeb6a5a5eeb790906d133a4f61e4db3d7c3646f5dc91f31f70409755db87796bacbcc67775fd82abf213078e419a781c419f1a996f34713ed57ef0c0cbe511d58f6395bca5865cfa7d517685bd8e35fefea44294a45c610f78aec2bc9c10abd834d1770f27a4e1ba5e71c75f4b6616f3b5c42238bc937bdac358219d1fba29d00000d218facde", 0xca) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r3, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r4, r3) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:19:19 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000100)=ANY=[@ANYBLOB="1d477002f7e05ec3de157efcc1115450d0cb4829948fd15ba615171869eb5dc9ed7d2dcf917029911ecd570b007f69bc816096d781b1ac5e2dba7e68f557aff18d53f74cab2bb845b7922619047bf1364f0e168010d07377dba4e2"], 0x1) 07:19:19 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r2, 0x1, 0x1000000000000f, &(0x7f0000000180)=0x57bb, 0x2ca) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="b700000000000000070000000000000095000000000000006681eadd021316fc78e2e8924f8b8bc08d2462379d2b36cfda626a978f53cc9d39d52452a220abef29cae97507e27b3664047d635f49e70656988f0bc9ab086ce0488c88ebea1f3f7421feb1615fe3225d4aa05bae26470409896298e0b2dae2823e1d7162c59b509969f682c96c8b7c03a3a299fb43042bb2b6362c5880dc714ea98df2e9d83441cb9b0290965eb53fece60022ad"], &(0x7f0000000080)='GPL\x00', 0x1, 0xc3, &(0x7f0000000240)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfd6e}, 0x48) getsockopt$inet_pktinfo(r0, 0x0, 0x8, &(0x7f0000000040)={0x0, @local, @initdev}, &(0x7f00000000c0)=0xc) setsockopt$sock_attach_bpf(r2, 0x1, 0x34, &(0x7f0000009000)=r3, 0x4) 07:19:20 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xe6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbfs(&(0x7f0000000180)='/dev/bus/usb/00#/00#\x00', 0x77, 0x101001) ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000000)={0x23, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0}) [ 1480.080008] vhci_hcd: invalid port number 0 07:19:20 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r2, 0x1, 0x1000000000000f, &(0x7f0000000180)=0x57bb, 0x2ca) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x8, 0x15, &(0x7f0000000340)=ANY=[@ANYBLOB="b700000000000000070000000000000095000000000000006681eadd021316fc78e2e8924f8b8bc08d2462379d2b36cfda626a978f53cc9d39d52452a220abef29cae97507e27b3664047d635f49e70656988f0bc9ab086ce0488c88ebea1f3f7421feb1615fe3225d4aa05bae26470409896298e0b2dae2823e1d7162c59b509969f682c96c8b7c03a3a299fb43042bb2b6362c5880dc714ea98df2e9d83441cb9b0290965eb53fece60022ad"], &(0x7f0000000080)='GPL\x00', 0x1, 0xcd, &(0x7f0000000400)=""/205, 0x0, 0xb, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000)={0xfffffffd}, 0x10}, 0x78) setsockopt$sock_attach_bpf(r2, 0x1, 0x34, &(0x7f0000009000)=r3, 0x4) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) r7 = fcntl$dupfd(r6, 0x0, r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) ioctl$sock_SIOCGIFBR(r7, 0x8940, &(0x7f00000001c0)=@get={0x1, &(0x7f00000000c0)=""/188, 0xffffffffffff20be}) ioctl$SNDRV_CTL_IOCTL_ELEM_REMOVE(r5, 0xc0405519, &(0x7f0000000040)={0x5, 0x11eac6a2ee0cdf58, 0x5, 0x2, 'syz0\x00'}) [ 1480.106421] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1480.115765] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1480.188528] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1480.196499] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1480.205017] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1480.210155] vhci_hcd: invalid port number 0 [ 1480.243832] CPU: 1 PID: 24112 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1480.251765] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1480.261125] Call Trace: [ 1480.263725] dump_stack+0x13e/0x194 [ 1480.267373] warn_alloc.cold+0x96/0x1af [ 1480.271377] ? zone_watermark_ok_safe+0x280/0x280 [ 1480.276247] ? wait_for_completion+0x390/0x390 [ 1480.280846] __alloc_pages_slowpath+0x2114/0x26c0 [ 1480.281643] syz-executor.4 cpuset= [ 1480.285714] ? warn_alloc+0xf0/0xf0 [ 1480.285726] ? find_held_lock+0x2d/0x110 [ 1480.285737] ? fs_reclaim_acquire+0x10/0x10 [ 1480.285755] __alloc_pages_nodemask+0x5d3/0x700 [ 1480.306043] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1480.311072] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1480.315704] syz4 [ 1480.315910] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1480.316789] mems_allowed=0-1 [ 1480.317900] alloc_pages_current+0xe7/0x1e0 [ 1480.317916] kvm_mmu_create+0xd1/0x1c0 [ 1480.317930] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1480.338525] ? alloc_pages_current+0xef/0x1e0 [ 1480.343036] kvm_vcpu_init+0x26d/0x360 [ 1480.346934] vmx_create_vcpu+0xf3/0x2900 [ 1480.351005] ? __mutex_unlock_slowpath+0x75/0x780 [ 1480.355936] ? futex_wake+0x11c/0x3d0 [ 1480.359777] ? handle_rdmsr+0x6b0/0x6b0 [ 1480.363762] kvm_vm_ioctl+0x49c/0x1430 [ 1480.367648] ? __lock_acquire+0x5f7/0x4620 [ 1480.371881] ? kvm_vcpu_release+0xa0/0xa0 [ 1480.376030] ? trace_hardirqs_on+0x10/0x10 [ 1480.380367] ? trace_hardirqs_on+0x10/0x10 [ 1480.384614] ? save_trace+0x290/0x290 [ 1480.388420] ? __might_fault+0x104/0x1b0 [ 1480.392502] ? kvm_vcpu_release+0xa0/0xa0 [ 1480.396651] do_vfs_ioctl+0x75a/0xfe0 [ 1480.400453] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1480.405217] ? ioctl_preallocate+0x1a0/0x1a0 [ 1480.409646] ? security_file_ioctl+0x76/0xb0 [ 1480.414062] ? security_file_ioctl+0x83/0xb0 [ 1480.418607] SyS_ioctl+0x7f/0xb0 [ 1480.421989] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1480.425972] do_syscall_64+0x1d5/0x640 [ 1480.429871] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1480.435063] RIP: 0033:0x45c849 [ 1480.438272] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1480.445990] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1480.453356] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1480.460633] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1480.468173] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1480.475546] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1480.483051] CPU: 0 PID: 24111 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1480.490949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1480.500309] Call Trace: [ 1480.502905] dump_stack+0x13e/0x194 [ 1480.506542] warn_alloc.cold+0x96/0x1af [ 1480.510528] ? zone_watermark_ok_safe+0x280/0x280 [ 1480.515393] ? wait_for_completion+0x390/0x390 [ 1480.520035] __alloc_pages_slowpath+0x2114/0x26c0 [ 1480.524906] ? warn_alloc+0xf0/0xf0 [ 1480.528552] ? find_held_lock+0x2d/0x110 [ 1480.532672] ? fs_reclaim_acquire+0x10/0x10 [ 1480.537024] __alloc_pages_nodemask+0x5d3/0x700 [ 1480.541844] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1480.546878] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1480.551735] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1480.557295] alloc_pages_current+0xe7/0x1e0 [ 1480.561635] kvm_mmu_create+0xd1/0x1c0 [ 1480.565548] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1480.569979] ? alloc_pages_current+0xef/0x1e0 [ 1480.574485] kvm_vcpu_init+0x26d/0x360 [ 1480.578383] vmx_create_vcpu+0xf3/0x2900 [ 1480.582461] ? __mutex_unlock_slowpath+0x75/0x780 [ 1480.587313] ? futex_wake+0x11c/0x3d0 [ 1480.591125] ? handle_rdmsr+0x6b0/0x6b0 [ 1480.595112] kvm_vm_ioctl+0x49c/0x1430 [ 1480.599013] ? __lock_acquire+0x5f7/0x4620 [ 1480.603357] ? kvm_vcpu_release+0xa0/0xa0 [ 1480.607520] ? trace_hardirqs_on+0x10/0x10 [ 1480.611775] ? trace_hardirqs_on+0x10/0x10 [ 1480.616285] ? save_trace+0x290/0x290 [ 1480.620224] ? __might_fault+0x104/0x1b0 [ 1480.624324] ? kvm_vcpu_release+0xa0/0xa0 [ 1480.628497] do_vfs_ioctl+0x75a/0xfe0 [ 1480.632310] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1480.637075] ? ioctl_preallocate+0x1a0/0x1a0 [ 1480.641502] ? security_file_ioctl+0x76/0xb0 [ 1480.645951] ? security_file_ioctl+0x83/0xb0 [ 1480.650368] SyS_ioctl+0x7f/0xb0 [ 1480.653745] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1480.657745] do_syscall_64+0x1d5/0x640 [ 1480.661646] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1480.666952] RIP: 0033:0x45c849 [ 1480.670142] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1480.677856] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1480.685133] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1480.692408] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1480.699685] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1480.706970] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1480.731905] CPU: 0 PID: 24107 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1480.739833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1480.749190] Call Trace: [ 1480.751791] dump_stack+0x13e/0x194 [ 1480.755556] warn_alloc.cold+0x96/0x1af [ 1480.759540] ? zone_watermark_ok_safe+0x280/0x280 [ 1480.764400] ? wait_for_completion+0x390/0x390 [ 1480.769104] __alloc_pages_slowpath+0x2114/0x26c0 [ 1480.773970] ? warn_alloc+0xf0/0xf0 [ 1480.777607] ? find_held_lock+0x2d/0x110 [ 1480.781702] ? fs_reclaim_acquire+0x10/0x10 [ 1480.786040] __alloc_pages_nodemask+0x5d3/0x700 [ 1480.790839] ? rcu_read_lock_sched_held+0x10a/0x130 07:19:20 executing program 5: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)={0x54, 0x2, 0x6, 0x1, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:mac\x00'}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8}]}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x54}}, 0x0) [ 1480.795873] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1480.800731] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1480.805772] alloc_pages_current+0xe7/0x1e0 [ 1480.810109] kvm_mmu_create+0xd1/0x1c0 [ 1480.814016] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1480.818347] ? alloc_pages_current+0xef/0x1e0 [ 1480.822861] kvm_vcpu_init+0x26d/0x360 [ 1480.826892] vmx_create_vcpu+0xf3/0x2900 [ 1480.830978] ? __mutex_unlock_slowpath+0x75/0x780 [ 1480.835831] ? futex_wake+0x11c/0x3d0 [ 1480.839646] ? handle_rdmsr+0x6b0/0x6b0 [ 1480.843641] kvm_vm_ioctl+0x49c/0x1430 [ 1480.847536] ? __lock_acquire+0x5f7/0x4620 [ 1480.851780] ? kvm_vcpu_release+0xa0/0xa0 [ 1480.855933] ? trace_hardirqs_on+0x10/0x10 [ 1480.860189] ? trace_hardirqs_on+0x10/0x10 [ 1480.864436] ? save_trace+0x290/0x290 [ 1480.868350] ? __might_fault+0x104/0x1b0 [ 1480.872425] ? kvm_vcpu_release+0xa0/0xa0 [ 1480.876593] do_vfs_ioctl+0x75a/0xfe0 [ 1480.880401] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1480.885176] ? ioctl_preallocate+0x1a0/0x1a0 [ 1480.889606] ? security_file_ioctl+0x76/0xb0 [ 1480.894026] ? security_file_ioctl+0x83/0xb0 [ 1480.898446] SyS_ioctl+0x7f/0xb0 [ 1480.901818] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1480.905803] do_syscall_64+0x1d5/0x640 [ 1480.909729] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1480.914924] RIP: 0033:0x45c849 [ 1480.918116] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1480.925828] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1480.933101] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1480.940386] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1480.947763] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1480.955044] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c 07:19:21 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)={0x0, 0x0, 0x0, 0x0, 0x0, "0000000000dfff000000000006bb8d8d00"}) r1 = syz_open_pts(r0, 0x0) ioctl$TIOCSTI(r1, 0x5412, 0xfffffffffffffffd) 07:19:21 executing program 5: r0 = socket$inet6(0xa, 0x1, 0x8010000000000084) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) listen(r0, 0x4000000043) r1 = socket$inet6_sctp(0xa, 0x1, 0x84) sendto$inet6(r1, &(0x7f000087dffe)='F', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c) shutdown(r1, 0x2) socket$nl_route(0x10, 0x3, 0x0) socket$netlink(0x10, 0x3, 0x0) r2 = accept4(r0, 0x0, 0x0, 0x0) shutdown(r2, 0x1) syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r2, 0x84, 0x9, &(0x7f00000000c0)={0x0, @in6, 0x0, 0x0, 0x0, 0x0, 0x5}, 0x98) 07:19:21 executing program 5: perf_event_open(&(0x7f00000003c0)={0x2, 0x70, 0x3e6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$SEG6(&(0x7f0000000100)='SEG6\x00') sendmsg$SEG6_CMD_SETHMAC(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)={0x2c, r1, 0x5, 0x0, 0x0, {}, [@SEG6_ATTR_SECRETLEN={0x5}, @SEG6_ATTR_ALGID={0x5}, @SEG6_ATTR_HMACKEYID={0x8, 0x3, 0xd97}]}, 0x2c}, 0x1, 0x6c}, 0x0) [ 1481.704422] Mem-Info: [ 1481.717737] active_anon:796979 inactive_anon:200 isolated_anon:0 [ 1481.717737] active_file:7237 inactive_file:6122 isolated_file:0 [ 1481.717737] unevictable:0 dirty:45 writeback:0 unstable:0 [ 1481.717737] slab_reclaimable:12800 slab_unreclaimable:131093 [ 1481.717737] mapped:59079 shmem:532 pagetables:16302 bounce:0 [ 1481.717737] free:549568 free_pcp:456 free_cma:0 07:19:22 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b75fb3488fd8015bba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377aba09e7b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047706865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) r3 = getpid() sched_setattr(r3, &(0x7f00000000c0)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0) sched_getparam(r3, &(0x7f0000000100)) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) r4 = add_key$keyring(&(0x7f0000000280)='keyring\x00', &(0x7f00000002c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffe) r5 = add_key$keyring(&(0x7f0000000200)='keyring\x00', &(0x7f0000000340)={'syz', 0x0}, 0x0, 0x0, r4) r6 = add_key$keyring(&(0x7f0000000700)='keyring\x00', &(0x7f0000000740)={'syz', 0x1}, 0x0, 0x0, r5) r7 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, r6) r8 = add_key$keyring(&(0x7f0000000280)='keyring\x00', &(0x7f00000002c0)={'syz', 0x2}, 0x0, 0x0, r7) r9 = add_key$keyring(&(0x7f0000000200)='keyring\x00', &(0x7f0000000340)={'syz', 0x0}, 0x0, 0x0, r8) add_key$keyring(&(0x7f00000013c0)='keyring\x00', &(0x7f0000001400)={'syz', 0x1}, 0x0, 0x0, r9) keyctl$KEYCTL_PKEY_VERIFY(0x1c, &(0x7f0000000080)={r9, 0x2d, 0x1000}, 0x0, &(0x7f00000000c0)="5948d10d7337d8fd1ee911b3f0f066c08b079523d9b664646dea3e53cbde2e79a0ee0d71230529fdb9a8b3e743", &(0x7f0000000980)="60e1fa3015495d83ad74e9ab809dcb621d1a604a0dfe21e62fb5bdbb32a6d09a6ab58fd6750bacf3b0f413cf6c5aaf440195d646de2cbf7461d29a1ac7b334fa35b7026730e2dcfc10bdb62b10444fdcacd7e9c238959c5a69f43fb3c9f5c34148514055f0970d72f90b1bfda82ed5aef78eb23938a2236d88098bf7cbaedd74dd4577527497f583dce5554727311cf9e2f62cff8239a13e0fb3deb5769d93eafb77e95fc191250e8d97884bbefd28bec65f55943eebbdb62b224781ce4e22b4fc0a929f756343a6a88ff11ca9d3d916b4c06952c8d950e0bb493b517e38381ce0207b899e553eeb83211761900ca92788b06b1971dc600a8aadf23d0e3e9153df6a2f8fe18b2df7a124557cbf452ecdd45c279d6ebb965ffa1d4b83ffa580e62eadcc5c21f55f3ef3fed95b8f64827025ade9e20304bbfb22fcde98fa1714e17c747d5328cfbf6ef13dca18471ef626ae5f7e72631fbc99cd9636f6b4e31000575ba9c6bd7113d965c91b3ffda64132faa7c7dc15bcdda669f3812e6d30a74f9069e0cc838caaf86c6e4e6af95ea57fdad720a5186d0b5d8e2a9290a8edc63145fcdd0ee5d0266604492dfb2dd0175c67f1099bdc6a60b43434e1b64d06533e09670b4c9c1c92c572052d813e8f3351a47689d0f1353e9ae46e703dc7e65db6dffc41b6737438dcb528e3eb81e6e439bc1419be6a3b8f4588adec79d0e13e5efaae0c8ab1d43f38713ff56cede6e077949c865de82aa6429b065c6d5f0d16c11c4f98a0a21bd477041d0f34a09dd2da2e00bb3f94faf27e2704b2c94bf6250d78bad0c399676928e56050aa772990b4cf89e5a05951cd7817a4250dc995495607a98f93bcc0a2690eb641b7937f462d1ab7a6b6c5df57428f22844ee5cd41abe7897d3ce7c2b08e9b7cc2ed881c75a8e567afbff843010cca0788151e2d58da37dc3f5088f4691b1a4455a3d4f7ca73092ebe16a3822b8f5a43fcf7f1f01260ada847fa32eadc59c050318ae423b54bcdbba043efc0891bcffefdf8301c0411971cc8fd68e7b91b803ab6976ee4df3fad0bfcc3ef14b3479094de5a8815d1e0b0a673da50904a1ddd10f9ab77f8a004be50424a766e8b6b5ab8c1c3ba109bdc81263cfbc12cd04ed18c2205413924ca8185a2607af2fc90c0406e8d6dd8bab2fbaa895994d2e5759f3f6643d5f51eadbee3d4419ff972f4d6d89e5ee8087c701eff18c62b86496e9c6d20e453f8621eb22f47fd4f52209d87593a405c146674dbe714c7ab251d4b40697d14b2683e6759d16b8140a3bed38b7a15bd059cfef11c63bad88fb7b2f24a951fcf341453073ab54ea270448d37b2513a0a87e4f721cfb3f57c87b65c90587682fa9d32230c0775845cb61091464c417e9fbb8c7346b4ad8724d099b8f58a1d69f657d59bdee9b7c1e16a7344474513ca5e853516253c8b19e194157bb790bd8f0b2b9f7139d2ba414f44b0457e52bec746b2ca37a96cc99cdf670934fd7087390053ed6240530af72e3100c7b5bc41c9eaec9ef004c6c33b15d5b2cfb2b8a32bf074521277c61468f39524186d238cb836241453185bcb6d8616df31e334cc448c45c980100ca55c01f0d1c9e474f9da80f269b97e6d4bd0e91924ca25ba968edade2eee95749626a9c19ea3454ff332c90ad776b622299405e8aacca334db248ce69651ce7b020313295c30c9976fa2e8647d6b5bb1ca490a6312ad9ceef308ce89cd1212d9756aba5bdff9ebb2dcc468c7dfde0b9684b16b1f679f2cc20f2e06bc303559ad646d8067d1a683fd12328823b0b0d3ba280849d5d48f5f8b9bb79e554fa82054fba1bd63bfa5d6fa8db481fc3dff1fe119b4743a210a05ce8449ac6a681604650c0c8ba0f12403fc6d80691d58fff95c1c085f15ea1b47ef73d838ceccde9d10c2872b2a88fa5f4697feb4054632c21e3aefb984df41f57e1c382f2ec41912689e16e4f5a14a8c9bf690fe9ce1a6013748a01d2dc1209a7097ff1bba17343b0410ab4bdb15b48a652924fbb399e1e93ffdf0bb7ca7144384b63708bf2885349af76b34fe5a9ea27cd23a0d95630670cd94c82f9a72cacd36b853f6e0c69b1e8af8c7985d83af34f5283464e2f042edf9ed3c16df782a3a5430f076d0064637dd0105f20fdd3a2aa7d8cd33a3bb2252bc683cfc3719c4f0181ce2679d77b8ea8809ca788e630b41b0c6a53e834d7177d34a772974bf4ffd4c7c8752b32049069465766b84cb6757464c230439ddaecbb1ed31dc2558e7af206663d83fb936e8b11efd72d35932605bbad15e6de5f11a282aa41b41a53f8a1dd6a32953777f047d5f8a336aca5d94b44663ebfa656e85db057d7ded299fbb13d5f6e3ecff21f90c2e77d21df476dddc3a81ebbaaa1cfbfe402581fdabc76d2e911a994dc511a8fea8f185e0941437d03cec5c1c1341e1ff087d8213303ed26ec15f7fd6157312152995b90164563fc61139465f994509695be1e1bd27a96acb83031393d085b6831f96feb483bd7a2d87fafb4e46bd69617107ee9cdb816e06cb64b4caf4899d54bf7b665868e35b5fbb0447e408d369b4d1142d8b3bfff935b9942f0c955f4aec3d05d2096dab02da10e54f31922bdf8b46d195d223f72a677553df346e375b301f6d98aecbdce4c153ee8789ef8cf111b968d34662b8befb125827ad16054615cae808dbe67b3918d1579f665396601e32d4c45474cf2c18fdf3cd53106ad392e8901d6e122c9b29943f133becf87d16148e8cbd393c6650b57250b798482cbd856b5009f80a0d042c4520df80882fe2ed61766522899253086c1b213525aa7f15ec73235ebcd9c8febffb607c17ab5bb647c37a21ffc6d6c52cf35e93d4491915a6bdf671b20e94f07fb7ac74bac4b474db12a6c8c742306590ba24d37b5760cda605493b7dfd4140d9f917d06556311def16d823351a14b3b1e40e80275e617c6a71b13b70f4226a1e761f4e8358382953e54b34a7ff33cb86b65578c908e19139e0720d4e9f0234a9f69a57c1f3c36d1ba5b272bcf500a4ba8cff41d914fbdb32f63652a46984a151dc741f8dd8908df45cc82be4c7b69f240bbfb05a2bc6949d588fbbcb16783b012cab01dc1bc0c3c4b57656c14c018d6d7ecc72d4aa9b138761e5ef9998202213e035a9b3715762a1acf6498227e4a75599975f85058f6c20cb40c3b63dd9b7f366818fbb01affd93da9dc219d0aebfe2acfb827523d9d28965b7f1ffdb0158b1e69e7a8ed3893f96a468bedfe0a0ae8acd7dbd1cb86ca6fabba7baff977f1dc1adce65b47b5fde4fba36870decbea0bfaf0f8be37a80c7d6f07a2e62fb2b4efa117e538a90b9435d27995aa63c78267db147a4050778cf28086809aed5872ec6d5fd13e22b7ae87fd6bbf47b546a67e873eb24f416b33fd3740d96ce1cb005eb9f94d2aa8ee60f09bd32354cd92218d05e71d36a7a16955ffdca732ebfd89cef569deb8fe671982a707c87e6328bcb1b369be25d0c3b2d5c7381533a83a0f014f66d5964e56304e6cec49ead95aa7949c1f63aefc93b3f6a7d9372829bf93b47bcec2ec0a3386330753f10efce3bcc844777eb624de9401a02ecc95e4365edd31e98f3ff8b38675f469ef4574f9173a8687fe6a74c59f48f9f9c73cce40ce5cf6a4d06edffa5cd1d5fdd314d53a0eb38e2e3f41034904b517219f261d6eb7e9c202b26363e31c88a501279f539c1584159a4539da3a55f0054994b693a2df8dd2a260168ba7b53e2ced02f4bdf3a17e9eba9786a42f821eec91139f1bc9444600043507a2633a256ab9842b0e2d062e9fa1fbc300b0a5081baf9a32a6e43408ff0acf52ca2a4697aaa317273628a5e5244cf67f47177aa789d7ecb26e86735c2b68d5cd6207957d20fe53d483b285a7c1437466d5fc196fa1d2068073236fc55bde084137f562f9b33a8773a393a1d46076c47598738d5bcc0310b26670a3cf8304853072310aef59158ae165fd0d26ba0906d9d9b9fbfc94535388c7871a454de123357feaffaa186e81f9bb08b627e66c9d30c7c6bc6995d22936f260a9452b9719ef5bf312425ef3433c20f95cd2a97a2a14a1011ba2d42411155f691723fe0d3332626e33b046912782b09e9b7c55be843bad461750f8989d0c7cafcfbc5b7505ef4c92147db24511e26b05d54f3708b26cbfbed0993d1dafa3edc30ca73684daa4cea4f68781b159fdfa395c1f2d694b2fca472cc71e2b3e047fb9151345058b1926e5af7813491f91f914f4fa8adda817289604ccbe0a5b35af94014f911e7e1d5536fca532c536c422a4b075ac7914aff2914b62d66a6d73612d62a74e3f3fb2dcb1f62463847173eb23325729313a65f42516d2176e49332b650e5c8d9f9f553019f868d8de3e3ce37f1ba664b1901fc933d197734f86bba94ecd31e6b94897744df9c3bd96d1262aaf28fdbcaa5d4ebdfff4c2612b8937627fd68ecc38ba22d82787000cc369961e66a3adbbec67b807f1b73dba0dddf5c38efb8211361d5425fa27ed4ecbbd62468b534dea8ac6192851573b9f417b2f5112ef9751f96c265fcc3775aa54acf34ff34722318bbeb4ef24a50bc12667fd90d9b72eb18d8fd6d77f8549b4212ffbf82127a3cddc8c2f38a9048c0926d82b6b4d5b050ecfd55a7a52bb6f7632255962a5b2a0e19cd18eddfa4f1854ccf7edb856adaf707bcbeeda3938e605ed81a39c170286e434be76da57697ffc5036dffa5e7f5dc00f0e9c7d999237c07b42dce5a11ccf9ff20665514979aa3aef6eb150434477846cf2c8053c2d94c20ac32a5f5b232db8ab2ee10af1a9b5c6de4947a6ce7ebc0241dacf8fc8df5de7fc1cff346fa69087c30283ecd4241b53605c311d28bbf18edf21e792f7abdf9c4bf788fe89b6d1febe76d51ae253bdbf7802afd2ffc08ee4f46a121c4a93b62ee28d9c28adf599018c1e1d276b7f1b99bb7a0c6c5727352f74be211312e4ebacf8a9288c3c461ced45b92d1ceec07de2412dac9bb7dd7328d3bbd8c15d26b6d12b193331308c820db12c85195afbf87d25e6032c7f4cf925cc31a023c481c0c9aecaf2170475db18cbab8625f700571143e2015ca12a578c7f4dd56c79cf7cc90be23fe4ff590a2b78163722725650321bb0e260e6e0adee1e1f5bac4dfebc6f61b3815610c8f0f0a91cf569509ef3ff3f8e3447b1f2616ce86dfb9301260d4a4842346ad925a7fd3cb7def4969af6cc212f486432bc2430171832add53cfce981ad3fb038df20a31efefb1b748f2f2f22f7a0d7bbcb9d8b3755eb1304b61144909e3d4efbfd8d2942432802010cf4e1b819e01c0f3cb1c1bbbee644ae7b8bef035188731ff4e321973cb622da40aee97aee7cb777be6752fa99ef2744cc1f499fb37427ff05c80deeece42a1888b6084c4a6a5610c7ee8b79d78c5150c0964d2a19260663a18e74e47110d4c8d042e721ac5bcbde332758a8927305ab40c488414fea227454f824189e868e6105d89391375d7d4ff457c9f0c29099ede1dc92677523882397d24abf9cfd55eb665389674f6be803b0396ccc97e72ea236a4e180d32a4b5a48e6961b5f4842fc71226d71184c82ea36e5a6fbd9257896de5b621efe04e971025c26368c798c278f67ec4842fd82f4b0638da5e6f42749095139f24d46fbfae97448aa2860ecbcca8cef9dd844fbbdb7ffdef411c2f0e16ee4f10ea75e4fc29fc484d44f9bba68b9ceec3b447eb13f0183b2537ecfbdcea9eceae0f3ed066e59ad15c9dfa4d18af28b975c4f8663f87dfabc67f0f92eb") 07:19:22 executing program 5: perf_event_open(&(0x7f0000000040)={0x2, 0x70, 0xe6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$usbfs(&(0x7f0000000180)='/dev/bus/usb/00#/00#\x00', 0x77, 0x101001) ioctl$USBDEVFS_CONTROL(r0, 0xc0185500, &(0x7f0000000000)={0x23, 0x3, 0x8, 0x0, 0x0, 0x0, 0x0}) [ 1481.907122] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:64kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208968kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1482.002242] vhci_hcd: invalid port number 0 [ 1482.041124] Node 1 active_anon:1216756kB inactive_anon:16kB active_file:28884kB inactive_file:24480kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27248kB dirty:176kB writeback:0kB shmem:924kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1482.154001] vhci_hcd: invalid port number 0 [ 1482.164717] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 07:19:22 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$TCXONC(r1, 0x540a, 0x2) [ 1482.281660] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1482.297813] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1482.319075] Node 0 DMA32 free:35976kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:64kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:840kB local_pcp:180kB free_cma:0kB [ 1482.361873] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1482.383829] CPU: 0 PID: 24195 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1482.391759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1482.401122] Call Trace: [ 1482.403721] dump_stack+0x13e/0x194 [ 1482.407366] warn_alloc.cold+0x96/0x1af [ 1482.411351] ? zone_watermark_ok_safe+0x280/0x280 [ 1482.416221] ? wait_for_completion+0x390/0x390 [ 1482.420811] __alloc_pages_slowpath+0x2114/0x26c0 [ 1482.425669] ? warn_alloc+0xf0/0xf0 [ 1482.429301] ? find_held_lock+0x2d/0x110 [ 1482.433372] ? fs_reclaim_acquire+0x10/0x10 [ 1482.437715] __alloc_pages_nodemask+0x5d3/0x700 [ 1482.442399] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1482.447429] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1482.452306] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1482.457361] alloc_pages_current+0xe7/0x1e0 [ 1482.461795] kvm_mmu_create+0xd1/0x1c0 [ 1482.465732] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1482.470089] ? alloc_pages_current+0xef/0x1e0 [ 1482.474603] kvm_vcpu_init+0x26d/0x360 [ 1482.478507] vmx_create_vcpu+0xf3/0x2900 [ 1482.482591] ? __mutex_unlock_slowpath+0x75/0x780 [ 1482.488062] ? futex_wake+0x11c/0x3d0 [ 1482.491876] ? handle_rdmsr+0x6b0/0x6b0 [ 1482.495869] kvm_vm_ioctl+0x49c/0x1430 [ 1482.499768] ? __lock_acquire+0x5f7/0x4620 [ 1482.504018] ? kvm_vcpu_release+0xa0/0xa0 [ 1482.508177] ? trace_hardirqs_on+0x10/0x10 [ 1482.512429] ? trace_hardirqs_on+0x10/0x10 [ 1482.516675] ? save_trace+0x290/0x290 [ 1482.520485] ? __might_fault+0x104/0x1b0 [ 1482.524782] ? kvm_vcpu_release+0xa0/0xa0 [ 1482.529043] do_vfs_ioctl+0x75a/0xfe0 [ 1482.532871] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1482.537634] ? ioctl_preallocate+0x1a0/0x1a0 [ 1482.542235] ? security_file_ioctl+0x76/0xb0 [ 1482.546652] ? security_file_ioctl+0x83/0xb0 [ 1482.551073] SyS_ioctl+0x7f/0xb0 [ 1482.554442] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1482.558421] do_syscall_64+0x1d5/0x640 [ 1482.562318] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1482.567507] RIP: 0033:0x45c849 [ 1482.570709] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1482.578423] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1482.585697] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1482.592969] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1482.600246] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1482.607526] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1482.666394] lowmem_reserve[]: 0 0 0 0 0 [ 1482.675315] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1482.779891] lowmem_reserve[]: 0 0 0 0 0 [ 1482.802111] Node 1 Normal free:2151856kB min:53612kB low:67012kB high:80412kB active_anon:1216744kB inactive_anon:16kB active_file:28884kB inactive_file:24484kB unevictable:0kB writepending:284kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12480kB pagetables:28104kB bounce:0kB free_pcp:948kB local_pcp:304kB free_cma:0kB [ 1482.902049] lowmem_reserve[]: 0 0 0 0 0 [ 1482.932918] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1482.971978] Node 0 DMA32: 888*4kB (UME) 1417*8kB (UMH) 790*16kB (UMEH) 246*32kB (UMEH) 9*64kB (MEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 35976kB [ 1483.037517] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1483.092592] Node 1 Normal: 100*4kB (UME) 135*8kB (UME) 376*16kB (UME) 244*32kB (UM) 49*64kB (UE) 13*128kB (UM) 1*256kB (E) 3*512kB (UME) 3*1024kB (UE) 6*2048kB (UME) 516*4096kB (UM) = 2150792kB [ 1483.153788] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1483.189301] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1483.233718] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1483.274536] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1483.300072] 13896 total pagecache pages [ 1483.304093] 0 pages in swap cache [ 1483.307546] Swap cache stats: add 0, delete 0, find 0/0 07:19:23 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x1) 07:19:23 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b75fb3488fd8015bba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377aba09e7b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047706865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x18, 0xfa00, {0x2, &(0x7f00000000c0)={0xffffffffffffffff}, 0x13f, 0x1}}, 0x20) write$RDMA_USER_CM_CMD_SET_OPTION(0xffffffffffffffff, &(0x7f0000000180)={0xe, 0x18, 0xfa00, @id_afonly={&(0x7f0000000080), r5, 0x0, 0x2, 0x4}}, 0x20) write$RDMA_USER_CM_CMD_BIND(r3, &(0x7f0000000080)={0x14, 0x88, 0xfa00, {r5, 0x10, 0x0, @ib={0x1b, 0x8, 0x0, {"6c15be48e27d52bcfd777ac1d926f519"}, 0x10001, 0x7, 0x58}}}, 0x90) r6 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) [ 1483.340066] Free swap = 0kB [ 1483.343150] Total swap = 0kB [ 1483.346170] 1965979 pages RAM [ 1483.349270] 0 pages HighMem/MovableOnly [ 1483.374370] 339049 pages reserved [ 1483.377859] 0 pages cma reserved 07:19:23 executing program 5: r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000)='/dev/ptmx\x00', 0x0, 0x0) fcntl$dupfd(r0, 0x0, r0) ioctl$TCSETS(r0, 0x40045431, &(0x7f00003b9fdc)={0x0, 0x0, 0x0, 0x0, 0x0, "0000000000dfff000000000006bb8d8d00"}) r1 = syz_open_pts(r0, 0x0) ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, "3e9704000000000000009564def2983b6c43df"}) r2 = dup3(r1, r0, 0x0) ioctl$sock_inet_tcp_SIOCINQ(r2, 0x541b, &(0x7f0000000080)) 07:19:23 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000040)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x404}, {0x0, 0x0, 0x34f9}], 0x10804c0, 0x0) ioctl$DRM_IOCTL_GEM_FLINK(0xffffffffffffffff, 0xc008640a, &(0x7f0000000380)) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX_OLD(r3, 0x84, 0x6b, &(0x7f0000000180)=[@in6={0xa, 0x4e24, 0x6, @ipv4={[], [], @multicast2}, 0x8}, @in6={0xa, 0x4e21, 0x7, @loopback, 0x4}, @in6={0xa, 0x4e20, 0xffffff73, @mcast2, 0x9}, @in6={0xa, 0x4e24, 0x5, @initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x6}, @in6={0xa, 0x4e24, 0x0, @ipv4={[], [], @empty}, 0x8001}], 0x8c) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = syz_genetlink_get_family_id$batadv(&(0x7f00000000c0)='batadv\x00') sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000080), 0xc, &(0x7f0000000180)={&(0x7f0000000100)={0x54, r6, 0x10, 0x70bd2a, 0x25dfdbff, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8}, @BATADV_ATTR_MULTICAST_FANOUT={0x8, 0x3c, 0x80}, @BATADV_ATTR_ISOLATION_MARK={0x8, 0x2b, 0x3}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0xffffffff}, @BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5, 0x2f, 0x1}, @BATADV_ATTR_GW_BANDWIDTH_UP={0x8, 0x32, 0x4}, @BATADV_ATTR_THROUGHPUT_OVERRIDE={0x8, 0x3b, 0xfffffff8}, @BATADV_ATTR_BRIDGE_LOOP_AVOIDANCE_ENABLED={0x5}]}, 0x54}, 0x1, 0x0, 0x0, 0x800}, 0x24040811) r7 = socket$netlink(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r9 = dup(r8) getsockname$packet(r9, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14) sendmsg$nl_route(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="ec0000001000010800"/20, @ANYRES32=r10, @ANYBLOB="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"], 0xec}}, 0x0) sendmsg$BATADV_CMD_GET_HARDIF(r5, &(0x7f00000002c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x10000}, 0xc, &(0x7f0000000100)={&(0x7f0000000240)={0x50, r6, 0x102, 0x70bd2c, 0x25dfdbfb, {}, [@BATADV_ATTR_DISTRIBUTED_ARP_TABLE_ENABLED={0x5}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x2}, @BATADV_ATTR_AP_ISOLATION_ENABLED={0x5}, @BATADV_ATTR_AGGREGATED_OGMS_ENABLED={0x5, 0x29, 0x1}, @BATADV_ATTR_ORIG_ADDRESS={0xa}, @BATADV_ATTR_NETWORK_CODING_ENABLED={0x5}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r10}]}, 0x50}, 0x1, 0x0, 0x0, 0x40005}, 0x24000000) [ 1483.459197] warn_alloc_show_mem: 2 callbacks suppressed [ 1483.459202] Mem-Info: 07:19:23 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000040)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="74c0b0b7cf6a808479ef97d3ce0c8c211442", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) mmap$usbfs(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000002, 0x80010, r1, 0x7fffffff) [ 1483.503772] active_anon:797008 inactive_anon:200 isolated_anon:0 [ 1483.503772] active_file:7238 inactive_file:6127 isolated_file:0 [ 1483.503772] unevictable:0 dirty:78 writeback:0 unstable:0 [ 1483.503772] slab_reclaimable:12759 slab_unreclaimable:131171 [ 1483.503772] mapped:59102 shmem:532 pagetables:16321 bounce:0 [ 1483.503772] free:549544 free_pcp:317 free_cma:0 07:19:23 executing program 5: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsa\x00', 0x2042, 0x0) writev(r0, &(0x7f0000000880)=[{&(0x7f0000000500)="cd9e64bb322a94e5492ae7f46ea4acc2a89c43c52d4052ffb9861060b5f786d5468a93968baca0e18b64ade59b78e845a25da58da5bc32a022f1fb6f2129cd5a84ebf91fbc6ff67a0101beedfd569fa97d282d5fe3fc77ab3ce1b42e2fe4a4bb5ebd597d19cd192203fdb176afd77b701d2d1627cc26603badc642d271a300"/141, 0x8d}, {&(0x7f0000000080)="2131c644f3f04caa1af161ab451585204cb56c0f", 0x14}, {&(0x7f00000005c0)="123fb785bf38c6e4f9845f647268dc9942a7affbe94bd01703098d995bdeffeadc5e3bc0443064050cae7b5d08d9f3ae7a6200f2148b82443600f701413a82409848de13ad7514dd74f861e20ff284008e1ac2f4f21375bf355f4de61b1244f0bed3059a7fc435f9080e2c55", 0x6c}, {&(0x7f0000000640)="4ac5fa147d0a48b0e1a231d2aaee008b8ec29071aafc6499b009fabf5609c2927bfc12a95a5785571e56a3ff6acd99f3a248f0511405d977a0857310a8e3757c621e11bf30bff713c4a7a77bfe8d59b501416c93526be6be1cdf2a7164212c93b4429f24123c7f1b9f9db27bb825b00fa1d3390f3d67e57edd06541f59748286b382dd6b1b7e9759070bbad855edd2d6993bbeef73db2eef5d13c98598e47ebd6e63db0eac37312a63a8c448a2de5fac17fe8f96e393279c7075b533342a6f2de7b1898fc94f2fb5979e20d85432f26b745760820ad6", 0xd6}, {&(0x7f0000000740)="d0", 0x1}, {0x0}], 0x6) 07:19:23 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$SNDRV_RAWMIDI_IOCTL_PVERSION(r2, 0x80045700, &(0x7f0000000040)) r3 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) [ 1483.728836] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1483.749333] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) 07:19:23 executing program 5: bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x18, 0x6, &(0x7f0000000000)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x63, 0x11, 0x54}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call, @exit]}, &(0x7f0000000080)='GPL\x00', 0x4, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0}, 0x70) [ 1483.777297] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:68kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208968kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1483.842535] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1483.853974] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1483.866225] CPU: 0 PID: 24235 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1483.874235] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1483.883599] Call Trace: [ 1483.886203] dump_stack+0x13e/0x194 [ 1483.889844] warn_alloc.cold+0x96/0x1af [ 1483.893826] ? zone_watermark_ok_safe+0x280/0x280 [ 1483.898694] ? wait_for_completion+0x390/0x390 [ 1483.903290] __alloc_pages_slowpath+0x2114/0x26c0 [ 1483.908152] ? warn_alloc+0xf0/0xf0 [ 1483.911803] ? find_held_lock+0x2d/0x110 [ 1483.915875] ? fs_reclaim_acquire+0x10/0x10 [ 1483.920219] __alloc_pages_nodemask+0x5d3/0x700 [ 1483.924894] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1483.929913] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1483.934765] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1483.939887] alloc_pages_current+0xe7/0x1e0 [ 1483.944220] kvm_mmu_create+0xd1/0x1c0 [ 1483.948120] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1483.952453] ? alloc_pages_current+0xef/0x1e0 [ 1483.956978] kvm_vcpu_init+0x26d/0x360 [ 1483.960878] vmx_create_vcpu+0xf3/0x2900 [ 1483.964973] ? __mutex_unlock_slowpath+0x75/0x780 [ 1483.969830] ? futex_wake+0x11c/0x3d0 [ 1483.973643] ? handle_rdmsr+0x6b0/0x6b0 [ 1483.977630] kvm_vm_ioctl+0x49c/0x1430 [ 1483.981528] ? __lock_acquire+0x5f7/0x4620 [ 1483.985777] ? kvm_vcpu_release+0xa0/0xa0 [ 1483.989930] ? trace_hardirqs_on+0x10/0x10 [ 1483.994171] ? trace_hardirqs_on+0x10/0x10 [ 1483.998415] ? save_trace+0x290/0x290 [ 1484.002227] ? __might_fault+0x104/0x1b0 [ 1484.006307] ? kvm_vcpu_release+0xa0/0xa0 [ 1484.010470] do_vfs_ioctl+0x75a/0xfe0 [ 1484.014279] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1484.019045] ? ioctl_preallocate+0x1a0/0x1a0 [ 1484.023468] ? security_file_ioctl+0x76/0xb0 [ 1484.027883] ? security_file_ioctl+0x83/0xb0 [ 1484.032302] SyS_ioctl+0x7f/0xb0 [ 1484.035673] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1484.039665] do_syscall_64+0x1d5/0x640 [ 1484.043564] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1484.048755] RIP: 0033:0x45c849 [ 1484.051945] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1484.059659] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1484.066938] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1484.074210] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1484.081486] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1484.088762] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1484.096334] CPU: 1 PID: 24237 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1484.104234] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1484.113593] Call Trace: [ 1484.116192] dump_stack+0x13e/0x194 [ 1484.119830] warn_alloc.cold+0x96/0x1af [ 1484.123810] ? zone_watermark_ok_safe+0x280/0x280 [ 1484.128667] ? wait_for_completion+0x390/0x390 [ 1484.133452] __alloc_pages_slowpath+0x2114/0x26c0 [ 1484.138320] ? warn_alloc+0xf0/0xf0 [ 1484.141952] ? find_held_lock+0x2d/0x110 [ 1484.146019] ? fs_reclaim_acquire+0x10/0x10 [ 1484.146202] Node 1 active_anon:1216952kB inactive_anon:16kB active_file:28884kB inactive_file:24508kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27456kB dirty:128kB writeback:0kB shmem:924kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1484.150349] __alloc_pages_nodemask+0x5d3/0x700 [ 1484.150364] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1484.150372] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1484.150382] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1484.150403] alloc_pages_current+0xe7/0x1e0 [ 1484.150416] kvm_mmu_create+0xd1/0x1c0 [ 1484.150431] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1484.210117] ? alloc_pages_current+0xef/0x1e0 [ 1484.214628] kvm_vcpu_init+0x26d/0x360 [ 1484.218534] vmx_create_vcpu+0xf3/0x2900 [ 1484.222614] ? __mutex_unlock_slowpath+0x75/0x780 [ 1484.227464] ? futex_wake+0x11c/0x3d0 [ 1484.231269] ? handle_rdmsr+0x6b0/0x6b0 [ 1484.235255] kvm_vm_ioctl+0x49c/0x1430 [ 1484.239150] ? __lock_acquire+0x5f7/0x4620 [ 1484.243393] ? kvm_vcpu_release+0xa0/0xa0 [ 1484.244105] Node 0 [ 1484.247658] ? trace_hardirqs_on+0x10/0x10 [ 1484.247673] ? trace_hardirqs_on+0x10/0x10 [ 1484.247688] ? save_trace+0x290/0x290 [ 1484.247699] ? __might_fault+0x104/0x1b0 [ 1484.247716] ? kvm_vcpu_release+0xa0/0xa0 [ 1484.247729] do_vfs_ioctl+0x75a/0xfe0 [ 1484.262114] DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1484.262204] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1484.272105] lowmem_reserve[]: [ 1484.274181] ? ioctl_preallocate+0x1a0/0x1a0 [ 1484.274201] ? security_file_ioctl+0x76/0xb0 [ 1484.274212] ? security_file_ioctl+0x83/0xb0 [ 1484.321015] SyS_ioctl+0x7f/0xb0 [ 1484.324419] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1484.328524] do_syscall_64+0x1d5/0x640 [ 1484.332434] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1484.334955] 0 [ 1484.337650] RIP: 0033:0x45c849 07:19:24 executing program 5: [ 1484.337655] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1484.337666] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1484.337672] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1484.337677] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1484.337682] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1484.337689] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1484.343053] 2557 2557 2557 2557 [ 1484.527254] Node 0 DMA32 free:36100kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:60kB inactive_file:12kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:880kB local_pcp:196kB free_cma:0kB [ 1484.598016] lowmem_reserve[]: 0 0 0 0 0 [ 1484.606811] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1484.670896] lowmem_reserve[]: 0 0 0 0 0 [ 1484.679554] Node 1 Normal free:2152332kB min:53612kB low:67012kB high:80412kB active_anon:1216852kB inactive_anon:16kB active_file:28884kB inactive_file:24508kB unevictable:0kB writepending:128kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12384kB pagetables:28276kB bounce:0kB free_pcp:1144kB local_pcp:412kB free_cma:0kB [ 1484.774364] lowmem_reserve[]: 0 0 0 0 0 [ 1484.787631] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1484.803889] Mem-Info: [ 1484.813353] active_anon:797003 inactive_anon:200 isolated_anon:0 [ 1484.813353] active_file:7236 inactive_file:6130 isolated_file:0 [ 1484.813353] unevictable:0 dirty:33 writeback:0 unstable:0 [ 1484.813353] slab_reclaimable:12744 slab_unreclaimable:130996 [ 1484.813353] mapped:59106 shmem:532 pagetables:16285 bounce:0 [ 1484.813353] free:549718 free_pcp:471 free_cma:0 [ 1484.829900] Node 0 DMA32: 919*4kB (UME) 1417*8kB (UMH) 790*16kB (UMEH) 246*32kB (UMEH) 9*64kB (MEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 36100kB [ 1484.900415] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:60kB inactive_file:12kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208968kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1484.926412] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1484.997075] Node 1 active_anon:1216852kB inactive_anon:16kB active_file:28884kB inactive_file:24508kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27456kB dirty:128kB writeback:0kB shmem:924kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1485.013927] Node 1 Normal: 111*4kB (UM) 150*8kB (UME) 341*16kB (UE) 252*32kB (UME) 50*64kB (UME) 11*128kB (U) 4*256kB (UE) 3*512kB (UME) 3*1024kB (UE) 6*2048kB (UME) 516*4096kB (UM) = 2151228kB [ 1485.066156] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1485.108357] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1485.134486] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1485.148518] Node 0 DMA32 free:35876kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:60kB inactive_file:12kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:908kB local_pcp:176kB free_cma:0kB [ 1485.151525] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1485.215797] lowmem_reserve[]: 0 0 0 0 0 [ 1485.226554] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1485.289229] lowmem_reserve[]: 0 0 0 0 0 [ 1485.314085] Node 1 Normal free:2154064kB min:53612kB low:67012kB high:80412kB active_anon:1216816kB inactive_anon:16kB active_file:28884kB inactive_file:24552kB unevictable:0kB writepending:208kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12352kB pagetables:28144kB bounce:0kB free_pcp:1044kB local_pcp:644kB free_cma:0kB [ 1485.339910] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1485.397207] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1485.402769] lowmem_reserve[]: 0 0 0 0 0 [ 1485.421905] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1485.424722] 13909 total pagecache pages [ 1485.460379] 0 pages in swap cache [ 1485.467676] Swap cache stats: add 0, delete 0, find 0/0 [ 1485.488487] Free swap = 0kB [ 1485.489463] Node 0 DMA32: 764*4kB (UME) 1420*8kB (UMH) 790*16kB (UMEH) 246*32kB (UMEH) 9*64kB (MEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 35504kB [ 1485.496710] Total swap = 0kB [ 1485.535388] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1485.556565] 1965979 pages RAM [ 1485.559391] Node 1 Normal: 113*4kB (UME) 118*8kB (UME) 464*16kB (UE) 267*32kB (UME) 50*64kB (UME) 11*128kB (U) 4*256kB (UE) 3*512kB (UME) 3*1024kB (UE) 6*2048kB (UME) 516*4096kB (UM) = 2153428kB [ 1485.567553] 0 pages HighMem/MovableOnly [ 1485.603432] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1485.618680] 339049 pages reserved [ 1485.622339] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1485.634460] 0 pages cma reserved [ 1485.641040] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB 07:19:25 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) openat$cachefiles(0xffffffffffffff9c, &(0x7f0000000080)='/dev/cachefiles\x00', 0x2000, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x6, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f00000000c0)=ANY=[@ANYBLOB="34e01f3930a24277ab67e3f0ce71e2c8a93bb4428b0b2b429c30209d0d28ea3aeb3733c941e96741b6fe4972fa2d54cf89bb5e31667be3dc86a586f98f6148b19918f54b9169d54772e1deb1546f07500b73c6b322d94f2e337a9fe1636bb42715dee101e84f931d716f18bfd22d6649b1b0f690b900d875122e8d549d6a75429a7a28f47943040000000000000000"], 0x1) pause() 07:19:25 executing program 5: 07:19:25 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_genetlink_get_family_id$gtp(&(0x7f0000000080)='gtp\x00') sendmsg$GTP_CMD_DELPDP(r1, &(0x7f0000000240)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000100)={&(0x7f00000001c0)={0x48, r2, 0x10, 0x70bd25, 0x25dfdbfd, {}, [@GTPA_TID={0xc, 0x3, 0x1}, @GTPA_MS_ADDRESS={0x8, 0x5, @broadcast}, @GTPA_I_TEI={0x8}, @GTPA_PEER_ADDRESS={0x8, 0x4, @loopback}, @GTPA_VERSION={0x8, 0x2, 0x1}, @GTPA_VERSION={0x8}]}, 0x48}, 0x1, 0x0, 0x0, 0x8084}, 0x14) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) 07:19:25 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_udp(0x2, 0x2, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) write$6lowpan_control(r4, &(0x7f00000004c0)='disconnect aa:aa:aa:aa:aa:10 1', 0x1e) r5 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = open(&(0x7f0000021000)='./file0\x00', 0x0, 0x0) r7 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000003740)='NLBL_UNLBL\x00') r8 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000400)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0) fsetxattr$security_ima(r8, &(0x7f0000000440)='security.ima\x00', &(0x7f0000000480)=@ng={0x4, 0x13, "0ed0bb5be2d14d60b52d6cfd9024ddb0bba549"}, 0x15, 0x3) sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r6, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)={0x6c, r7, 0x100, 0x70bd26, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @loopback}, @NLBL_UNLABEL_A_SECCTX={0x21, 0x7, 'system_u:object_r:fonts_t:s0\x00'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @dev={0xac, 0x14, 0x14, 0x2b}}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @initdev={0xfe, 0x88, [], 0x0, 0x0}}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}]}, 0x6c}}, 0x0) sendmsg$NLBL_UNLABEL_C_STATICADD(r5, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x1c, r7, 0x800, 0x70bd2a, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_IPV4ADDR={0x8, 0x4, @broadcast}]}, 0x1c}, 0x1, 0x0, 0x0, 0x880}, 0x4000080) setsockopt$sock_int(r2, 0x1, 0x1000000000000f, &(0x7f0000000180)=0x57bb, 0x2ca) r9 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="b700000000000000070000000000000095000000000000006681eadd021316fc78e2e8924f8b8bc08d2462379d2b36cfda626a978f53cc9d39d52452a220abef29cae97507e27b3664047d635f49e70656988f0bc9ab086ce0488c88ebea1f3f7421feb1615fe3225d4aa05bae26470409896298e0b2dae2823e1d7162c59b509969f682c96c8b7c03a3a299fb43042bb2b6362c5880dc714ea98df2e9d83441cb9b0290965eb53fece60022ad"], &(0x7f0000000080)='GPL\x00', 0x1, 0xc3, &(0x7f0000000240)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfd6e}, 0x48) setsockopt$sock_attach_bpf(r2, 0x1, 0x34, &(0x7f0000009000)=r9, 0x4) openat$vfio(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/vfio/vfio\x00', 0x40000, 0x0) [ 1485.699655] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1485.737278] 13909 total pagecache pages [ 1485.750880] 0 pages in swap cache [ 1485.776362] Swap cache stats: add 0, delete 0, find 0/0 [ 1485.813715] Free swap = 0kB [ 1485.834049] Total swap = 0kB [ 1485.850621] 1965979 pages RAM [ 1485.865041] 0 pages HighMem/MovableOnly [ 1485.882645] 339049 pages reserved [ 1485.898381] 0 pages cma reserved 07:19:26 executing program 5: 07:19:26 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r7, 0x0, r7) setsockopt$sock_timeval(r7, 0x1, 0x43, &(0x7f00000000c0), 0x10) ioctl$KVM_GET_XSAVE(r6, 0x9000aea4, &(0x7f0000000980)) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:19:26 executing program 2: syz_mount_image$tmpfs(&(0x7f0000000000)='tmpfs\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)={[{@mpol={'mpol', 0x3d, {'interleave', '=relative', @val={0x3a, [0x2d]}}}}]}) r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) 07:19:26 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x1000000000000f, &(0x7f0000000180)=0x57bb, 0x2ca) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$EVIOCGSND(r3, 0x8040451a, &(0x7f00000001c0)=""/65) ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r1, 0x4058534c, &(0x7f00000000c0)={0xfffffff7, 0x81, 0x1729, 0xfee, 0x81a, 0x6}) r4 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="b700000000000000070000000000000095000000000000006681eadd021316fc78e2e8924f8b8bc08d2462379d2b36cfda626a978f53cc9d39d52452a220abef29cae97507e27b3664047d635f49e70656988f0bc9ab086ce0488c88ebea1f3f7421feb1615fe3225d4aa05bae26470409896298e0b2dae2823e1d7162c59b509969f682c96c8b7c03a3a299fb43042bb2b6362c5880dc714ea98df2e9d83441cb9b0290965eb53fece60022ad"], &(0x7f0000000080)='GPL\x00', 0x1, 0xc3, &(0x7f0000000240)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfd6e}, 0x48) setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x34, &(0x7f0000009000)=r4, 0x4) 07:19:26 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) ioctl$VIDIOC_G_EXT_CTRLS(0xffffffffffffffff, 0xc0205647, &(0x7f00000000c0)={0x4, 0x8, 0xffffffff, 0xffffffffffffffff, 0x0, &(0x7f0000000080)={0x980920, 0x2, [], @value64=0x1f}}) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) getsockopt$inet_sctp6_SCTP_DEFAULT_SNDINFO(r4, 0x84, 0x22, &(0x7f0000000100)={0x2, 0x202, 0xa8, 0x3, 0x0}, &(0x7f0000000140)=0x10) setsockopt$inet_sctp_SCTP_DEFAULT_SEND_PARAM(r2, 0x84, 0xa, &(0x7f0000000180)={0x20, 0x8001, 0x200, 0x80000000, 0x7ff, 0x80000000, 0xb7, 0xc235, r5}, 0x20) r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r6, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r6, 0xae80, 0x0) r7 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r6, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r7, r6) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r9 = dup(r8) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:19:26 executing program 5: 07:19:26 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r2, 0x1, 0x1000000000000f, &(0x7f0000000180)=0x57bb, 0x2ca) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="b700000000000000070000000000000095000000000000006681eadd021316fc78e2e8924f8b8bc08d2462379d2b36cfda626a978f53cc9d39d52452a220ab92089ff0e8dd39ff68612398918def29cae97507e27b3664047d635f49e70656988f0bc9ab086ce0488c88ebea1f3f7421feb1615fe3225d4aa05bae26470409896298e0b2dae2823e1d7162c59b509969f682c96c8b7c03a3a299fb43042bb2b6362c5880dc714ea98df2e9d83443cb9b0290965eb53fece60022ad"], &(0x7f0000000080)='GPL\x00', 0x1, 0xc3, &(0x7f0000000240)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfd6e}, 0x48) setsockopt$sock_attach_bpf(r2, 0x1, 0x34, &(0x7f0000009000)=r3, 0x4) 07:19:26 executing program 2: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000a80)='/dev/vcsa\x00', 0x54da00, 0x0) ioctl$IMHOLD_L1(r0, 0x80044948, &(0x7f0000000ac0)=0xbf62) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, &(0x7f0000000640)={0x3, 0x0, 0x4, 0xe000, 0x8, {}, {0x2, 0x2, 0x9, 0x9, 0x1, 0x1f, "39fc8127"}, 0x2, 0x0, @userptr=0x9, 0x9, 0x0, r0}) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r3, 0x0, r3) prctl$PR_TASK_PERF_EVENTS_ENABLE(0x20) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) sendfile(r3, r5, &(0x7f0000000600)=0x3, 0x61c) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x6, &(0x7f0000000540)=[{&(0x7f0000000000)="1c2c2103b44644dd41dc7be8acba35c13114b0f35ee109bb40bfc01597dd03633b", 0x21, 0x80000001}, {&(0x7f0000000040)="bd054aec8716bafe0a0c453c8ca876c4c52cb06a6ca752bd0ecc03b0444f3a3e2d5011dc137f25050080055527ee88ff133e1eb11967d6e6fd699e24ed9df80ab167d51fe496bd46b88b4581c1fbc2617b52aa7ff0d8cc36f859a35842aac9cf02fae7412a6a02c9dce917092c1a477a673f85793003cbadf91f4194c5c6fdbbdd646974ee60697113eb16fb161849a83a8b85e4a956e87351b376e9d9d65e5e482f5cb7fc7d4abcfdbfb047fc68e536dfa22acc928b282f8f1d499fe3534e67ade5501e6404d0", 0xc7, 0x8}, {&(0x7f00000001c0)="9626b37ab60bb063f9312fd6d1f166b39ab5ab4f00a5386fb561c7e87ed16c05309d89b87894a16fce3b9ffbf36de6118959805ce431c5243e30e9a4a77ea1180aa7c79a6c37441761ad726aa2a477ccab1d544f093cbdba76ce06382d1d3fcea573c363d22a28db4e7e8f808d99cd74e89a", 0x72, 0x9}, {&(0x7f0000000240)="52348f093f736d69ba9fb2744bf7ff3cd1ca07112662c2826012d782155deb0229672aa1d5e206fc0cb7ef7b46e313cea9b0713ad4c546ee0803417cbc642eb042e62dfc225b9420ba34c07a69ff91d89ce1aaa70271cf9b51c947f38f593e16f4871c0d0cdd97056086bd6bd1e574b82c254887ce6e9319dc5267576f22bab0a0f975db52b050ef915f04f7e501a7a087d222315326a7c03f80ce1a6bc8d4599be3cdc4b3c5737e865fc7f972ea25b1d16e90f3803fd11dc94023766569f53e638852", 0xc3, 0x2}, {&(0x7f0000000340)="81ad3a671d75a8639268fc0fe143f6ce29d961635052cd0004df11abcb632220c9eb1b5dd9e798d1ba7e71fa81ab215c701d08ec5aeffe71ed6296550e34a8b025055fd0c54ab08c5f3347877a3426bfea9ffb61b2fd46de10439ecfd987478dc242eebcafa910f56bdbe5251d442a5dc8cc8ec60818cf2ab6c662c34d45014621f296243a15adab8452eac0539fd22109e05f00bdd89028272b69fd343116a374c7e36726740f4e2a7550b7a766085a6dff963be73e95163c52b4e9b60d811cd7e18873ed68aabf3b09a019ae0bccf6c878e6456a19b373e81e486b6f50fbca06b2c4c1b047ab4f59b79e8924d1c7", 0xef, 0x9}, {&(0x7f0000000440)="af901fd8f0e92408fd6b6bf008f19124cd80d2f1270984873fb23fa0113e38f6bf404975cb6fa608f77085348ac45c8181a4d1f546c445800f71216e248b133bae80508ceb772a1f35d9d504bf77bb968ff9645b49a8de67b4059457cb830ef6335434ded4609121fcc12c21e412c25f6fb180b4bb6a7bf6dc9797feffa9337daf4923881ab4cb90088d2ff3f4691587a84fb85093d6abe7d429a28e7cd6e78c493db5c4c5572a0e3e859655d75e3c8ea2983a4d8d2b809543ee258924cf694fdc39ef005756b4b41df8d6b4e2a90a91ee06511117fad8be11c3999345b6232f4ed8", 0xe2, 0x357fc34e}], 0x8, 0x0) [ 1486.068737] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1486.120655] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1486.131847] CPU: 0 PID: 24311 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1486.139767] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1486.149132] Call Trace: [ 1486.151732] dump_stack+0x13e/0x194 [ 1486.155375] warn_alloc.cold+0x96/0x1af [ 1486.159355] ? zone_watermark_ok_safe+0x280/0x280 [ 1486.164219] ? wait_for_completion+0x390/0x390 [ 1486.168819] __alloc_pages_slowpath+0x2114/0x26c0 [ 1486.173807] ? warn_alloc+0xf0/0xf0 [ 1486.177456] ? find_held_lock+0x2d/0x110 [ 1486.181528] ? fs_reclaim_acquire+0x10/0x10 [ 1486.185866] __alloc_pages_nodemask+0x5d3/0x700 [ 1486.190663] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1486.195682] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1486.200532] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1486.205565] alloc_pages_current+0xe7/0x1e0 [ 1486.209898] kvm_mmu_create+0xd1/0x1c0 [ 1486.213795] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1486.218123] ? alloc_pages_current+0xef/0x1e0 [ 1486.222625] kvm_vcpu_init+0x26d/0x360 [ 1486.226521] vmx_create_vcpu+0xf3/0x2900 [ 1486.230592] ? __mutex_unlock_slowpath+0x75/0x780 [ 1486.235440] ? futex_wake+0x11c/0x3d0 [ 1486.239246] ? handle_rdmsr+0x6b0/0x6b0 [ 1486.243235] kvm_vm_ioctl+0x49c/0x1430 [ 1486.247134] ? __lock_acquire+0x5f7/0x4620 [ 1486.251375] ? kvm_vcpu_release+0xa0/0xa0 [ 1486.255530] ? trace_hardirqs_on+0x10/0x10 [ 1486.259897] ? trace_hardirqs_on+0x10/0x10 [ 1486.264142] ? save_trace+0x290/0x290 [ 1486.267953] ? __might_fault+0x104/0x1b0 [ 1486.272049] ? kvm_vcpu_release+0xa0/0xa0 [ 1486.276206] do_vfs_ioctl+0x75a/0xfe0 [ 1486.280018] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1486.284784] ? ioctl_preallocate+0x1a0/0x1a0 [ 1486.289226] ? security_file_ioctl+0x76/0xb0 [ 1486.294943] ? security_file_ioctl+0x83/0xb0 [ 1486.299356] SyS_ioctl+0x7f/0xb0 [ 1486.302741] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1486.306720] do_syscall_64+0x1d5/0x640 [ 1486.310621] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1486.315810] RIP: 0033:0x45c849 [ 1486.318999] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1486.326714] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1486.334085] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1486.341361] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1486.348633] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1486.355996] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1486.389281] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1486.529435] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1486.584386] CPU: 1 PID: 24332 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1486.592318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1486.601889] Call Trace: [ 1486.604492] dump_stack+0x13e/0x194 [ 1486.608130] warn_alloc.cold+0x96/0x1af [ 1486.612237] ? zone_watermark_ok_safe+0x280/0x280 [ 1486.617103] ? wait_for_completion+0x390/0x390 [ 1486.621702] __alloc_pages_slowpath+0x2114/0x26c0 [ 1486.626573] ? warn_alloc+0xf0/0xf0 [ 1486.630220] ? find_held_lock+0x2d/0x110 [ 1486.634300] ? fs_reclaim_acquire+0x10/0x10 [ 1486.638657] __alloc_pages_nodemask+0x5d3/0x700 [ 1486.643351] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1486.648359] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1486.653310] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1486.658337] alloc_pages_current+0xe7/0x1e0 [ 1486.662657] kvm_mmu_create+0xd1/0x1c0 [ 1486.666537] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1486.670861] ? alloc_pages_current+0xef/0x1e0 [ 1486.675347] kvm_vcpu_init+0x26d/0x360 [ 1486.679229] vmx_create_vcpu+0xf3/0x2900 [ 1486.683281] ? __mutex_unlock_slowpath+0x75/0x780 [ 1486.688110] ? futex_wake+0x11c/0x3d0 [ 1486.691909] ? handle_rdmsr+0x6b0/0x6b0 [ 1486.695876] kvm_vm_ioctl+0x49c/0x1430 [ 1486.699748] ? __lock_acquire+0x5f7/0x4620 [ 1486.703981] ? kvm_vcpu_release+0xa0/0xa0 [ 1486.708132] ? trace_hardirqs_on+0x10/0x10 [ 1486.712376] ? trace_hardirqs_on+0x10/0x10 [ 1486.716620] ? save_trace+0x290/0x290 [ 1486.720422] ? __might_fault+0x104/0x1b0 [ 1486.724483] ? kvm_vcpu_release+0xa0/0xa0 [ 1486.728625] do_vfs_ioctl+0x75a/0xfe0 [ 1486.732434] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1486.737183] ? ioctl_preallocate+0x1a0/0x1a0 [ 1486.741584] ? security_file_ioctl+0x76/0xb0 [ 1486.745979] ? security_file_ioctl+0x83/0xb0 [ 1486.750372] SyS_ioctl+0x7f/0xb0 [ 1486.753720] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1486.757687] do_syscall_64+0x1d5/0x640 [ 1486.761562] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1486.766738] RIP: 0033:0x45c849 [ 1486.769912] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1486.777607] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1486.784889] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1486.792144] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1486.799534] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1486.806924] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1486.925476] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1486.960194] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1486.979131] CPU: 0 PID: 24351 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1486.987051] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1486.996414] Call Trace: [ 1486.999018] dump_stack+0x13e/0x194 [ 1487.002663] warn_alloc.cold+0x96/0x1af [ 1487.006651] ? zone_watermark_ok_safe+0x280/0x280 [ 1487.011515] ? wait_for_completion+0x390/0x390 [ 1487.016129] __alloc_pages_slowpath+0x2114/0x26c0 [ 1487.020997] ? warn_alloc+0xf0/0xf0 [ 1487.024630] ? find_held_lock+0x2d/0x110 [ 1487.028699] ? fs_reclaim_acquire+0x10/0x10 [ 1487.033039] __alloc_pages_nodemask+0x5d3/0x700 [ 1487.037718] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1487.042748] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1487.047716] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1487.052758] alloc_pages_current+0xe7/0x1e0 [ 1487.057093] kvm_mmu_create+0xd1/0x1c0 [ 1487.061201] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1487.065527] ? alloc_pages_current+0xef/0x1e0 [ 1487.070029] kvm_vcpu_init+0x26d/0x360 [ 1487.073922] vmx_create_vcpu+0xf3/0x2900 [ 1487.077990] ? __mutex_unlock_slowpath+0x75/0x780 [ 1487.082843] ? handle_rdmsr+0x6b0/0x6b0 [ 1487.086833] kvm_vm_ioctl+0x49c/0x1430 [ 1487.092291] ? __lock_acquire+0x5f7/0x4620 [ 1487.096536] ? kvm_vcpu_release+0xa0/0xa0 [ 1487.100871] ? trace_hardirqs_on+0x10/0x10 [ 1487.105316] ? trace_hardirqs_on+0x10/0x10 [ 1487.109563] ? save_trace+0x290/0x290 [ 1487.113372] ? __might_fault+0x104/0x1b0 [ 1487.117448] ? kvm_vcpu_release+0xa0/0xa0 [ 1487.121604] do_vfs_ioctl+0x75a/0xfe0 [ 1487.125412] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1487.130180] ? ioctl_preallocate+0x1a0/0x1a0 [ 1487.134612] ? security_file_ioctl+0x76/0xb0 [ 1487.139032] ? security_file_ioctl+0x83/0xb0 [ 1487.143459] SyS_ioctl+0x7f/0xb0 [ 1487.146828] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1487.150811] do_syscall_64+0x1d5/0x640 [ 1487.154714] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1487.159908] RIP: 0033:0x45c849 [ 1487.163092] RSP: 002b:00007f75f71fac78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1487.170809] RAX: ffffffffffffffda RBX: 00007f75f71fb6d4 RCX: 000000000045c849 [ 1487.178091] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1487.185370] RBP: 000000000076c180 R08: 0000000000000000 R09: 0000000000000000 [ 1487.192642] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1487.199913] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076c18c [ 1487.510341] warn_alloc_show_mem: 1 callbacks suppressed [ 1487.510345] Mem-Info: [ 1487.518179] active_anon:796971 inactive_anon:201 isolated_anon:0 [ 1487.518179] active_file:7231 inactive_file:6151 isolated_file:7 [ 1487.518179] unevictable:0 dirty:1 writeback:5 unstable:0 [ 1487.518179] slab_reclaimable:12709 slab_unreclaimable:130705 [ 1487.518179] mapped:59070 shmem:533 pagetables:16240 bounce:0 [ 1487.518179] free:550298 free_pcp:366 free_cma:0 [ 1487.580078] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1487.607788] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1487.620363] CPU: 0 PID: 24361 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1487.628371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1487.637729] Call Trace: [ 1487.640328] dump_stack+0x13e/0x194 [ 1487.643972] warn_alloc.cold+0x96/0x1af [ 1487.647981] ? zone_watermark_ok_safe+0x280/0x280 [ 1487.652853] ? wait_for_completion+0x390/0x390 [ 1487.657467] __alloc_pages_slowpath+0x2114/0x26c0 [ 1487.662335] ? warn_alloc+0xf0/0xf0 [ 1487.665968] ? find_held_lock+0x2d/0x110 [ 1487.670178] ? fs_reclaim_acquire+0x10/0x10 [ 1487.674524] __alloc_pages_nodemask+0x5d3/0x700 [ 1487.679197] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1487.684222] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1487.689102] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1487.694130] alloc_pages_current+0xe7/0x1e0 [ 1487.698474] kvm_mmu_create+0xd1/0x1c0 [ 1487.702374] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1487.706708] ? alloc_pages_current+0xef/0x1e0 [ 1487.711208] kvm_vcpu_init+0x26d/0x360 [ 1487.715105] vmx_create_vcpu+0xf3/0x2900 [ 1487.719177] ? __mutex_unlock_slowpath+0x75/0x780 [ 1487.724033] ? futex_wake+0x11c/0x3d0 [ 1487.727835] ? handle_rdmsr+0x6b0/0x6b0 [ 1487.731836] kvm_vm_ioctl+0x49c/0x1430 [ 1487.735732] ? __lock_acquire+0x5f7/0x4620 [ 1487.740060] ? kvm_vcpu_release+0xa0/0xa0 [ 1487.744337] ? trace_hardirqs_on+0x10/0x10 [ 1487.748588] ? trace_hardirqs_on+0x10/0x10 [ 1487.752834] ? save_trace+0x290/0x290 [ 1487.756638] ? __might_fault+0x104/0x1b0 [ 1487.760707] ? kvm_vcpu_release+0xa0/0xa0 [ 1487.764863] do_vfs_ioctl+0x75a/0xfe0 [ 1487.768686] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1487.773452] ? ioctl_preallocate+0x1a0/0x1a0 [ 1487.777876] ? security_file_ioctl+0x76/0xb0 [ 1487.782293] ? security_file_ioctl+0x83/0xb0 [ 1487.786801] SyS_ioctl+0x7f/0xb0 [ 1487.790180] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1487.794164] do_syscall_64+0x1d5/0x640 [ 1487.798066] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1487.803258] RIP: 0033:0x45c849 [ 1487.806449] RSP: 002b:00007f4cd9a65c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1487.814160] RAX: ffffffffffffffda RBX: 00007f4cd9a666d4 RCX: 000000000045c849 [ 1487.821439] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1487.828714] RBP: 000000000076c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1487.835990] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1487.843262] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076c0ec [ 1487.872631] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:32kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):28kB mapped:208964kB dirty:0kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1487.940174] Node 1 active_anon:1216824kB inactive_anon:20kB active_file:28892kB inactive_file:24596kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27316kB dirty:4kB writeback:20kB shmem:928kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1487.996577] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1488.075223] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1488.094545] Node 0 DMA32 free:35356kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:60kB inactive_file:8kB unevictable:0kB writepending:0kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:160kB local_pcp:32kB free_cma:0kB [ 1488.190723] lowmem_reserve[]: 0 0 0 0 0 [ 1488.207835] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1488.286135] lowmem_reserve[]: 0 0 0 0 0 [ 1488.298422] Node 1 Normal free:2154792kB min:53612kB low:67012kB high:80412kB active_anon:1216636kB inactive_anon:16kB active_file:28892kB inactive_file:24620kB unevictable:0kB writepending:28kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12320kB pagetables:28152kB bounce:0kB free_pcp:1060kB local_pcp:544kB free_cma:0kB [ 1488.384021] lowmem_reserve[]: 0 0 0 0 0 [ 1488.396248] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1488.434968] Node 0 DMA32: 666*4kB (UME) 1435*8kB (UMEH) 790*16kB (UMEH) 246*32kB (UMEH) 9*64kB (MEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 35232kB [ 1488.469842] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1488.507145] Node 1 Normal: 49*4kB (ME) 113*8kB (UME) 318*16kB (UME) 279*32kB (UME) 51*64kB (UE) 16*128kB (UM) 12*256kB (UME) 3*512kB (UE) 3*1024kB (UE) 6*2048kB (UME) 516*4096kB (UM) = 2153932kB [ 1488.584322] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1488.621784] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1488.668457] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1488.706497] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1488.742040] 13927 total pagecache pages [ 1488.754988] 0 pages in swap cache [ 1488.765142] Swap cache stats: add 0, delete 0, find 0/0 [ 1488.788768] Free swap = 0kB [ 1488.801919] Total swap = 0kB [ 1488.812787] 1965979 pages RAM [ 1488.822720] 0 pages HighMem/MovableOnly [ 1488.835715] 339049 pages reserved [ 1488.847362] 0 pages cma reserved 07:19:28 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f00000002c0)=ANY=[@ANYBLOB="728cff21680e2e0e25f96e69fd999571e56e685aa7cbba886c2700fcef681e3e8764f6803d33841c774b5ca0b42af670d3cb015d10444b56280d0039a31dfa2f429387ee7cb787e7ffcb65441239849d9bd3613d016bcbcf7fe8766d9413a4d5d2e3e1404becfa3e76135269b883d162384da45135e42fbfb4202545099fc6a01e85bd0144a2ef1781419c4307c9384ef08ba5ad1d46b3106993d0025599285ab57ad0b2d07cb1944c2a43e02790d7763fdd3a13d6b043d8286756c3"], 0x1) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) r5 = openat$cgroup_type(r4, &(0x7f0000000200)='cgroup.type\x00', 0x2, 0x0) fsetxattr$security_ima(r5, &(0x7f0000000240)='security.ima\x00', &(0x7f0000000280)=ANY=[@ANYBLOB="040f94697e06ab4aa21f62202a"], 0x1, 0x4) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KVM_SET_CPUID2(r4, 0x4008ae90, &(0x7f0000000080)=ANY=[@ANYBLOB="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"/368]) 07:19:28 executing program 5: 07:19:28 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x8) ioctl$SIOCGSTAMP(r2, 0x8906, &(0x7f0000000000)) r3 = dup(r0) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f00000011c0)={&(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f00000001c0)="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", 0x1000, r0}, 0x68) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000040)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) 07:19:28 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r2, 0x1, 0x1000000000000f, &(0x7f0000000180)=0x57bb, 0x2ca) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="b700000000000000070000000000000095000000000000006681eadd021316fc78e2e8924f8b8bc08d2462379d2b36cfda626a978f53cc9d39d52452a220abef29cae97507e27b3664047d635f49e70656988f0bc9ab086ce0488c88ebea1f3f7421feb1615fe3225d4aa05bae26470409896298e0b2dae2823e1d7162c59b509969f682c96c8b7c03a3a299fb43042bb2b6362c5880dc714ea98df2e9d83441cb9b0290965eb53fece60022ad233da3ee69d37770e6a051c6282667d3cd0537a3e976ce6b3a9879d936fef13f4525c26c80f585b50d"], &(0x7f0000000080)='GPL\x00', 0x1, 0xc3, &(0x7f0000000240)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfd6e}, 0x48) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$PERF_EVENT_IOC_RESET(r5, 0x2403, 0x10001) setsockopt$sock_attach_bpf(r2, 0x1, 0x34, &(0x7f0000009000)=r3, 0x4) 07:19:28 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140)='nl80211\x00') sendmsg$NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000000)={0x1c, r2, 0xb0343aabd1184b87, 0x0, 0x0, {}, [@NL80211_ATTR_IFINDEX={0x8}]}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000140)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2000000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x20, r2, 0x300, 0x70bd27, 0x25dfdbfc, {}, [@NL80211_ATTR_WDEV={0xc, 0x99, {0x0, 0x1}}]}, 0x20}, 0x1, 0x0, 0x0, 0x4000}, 0x8000) r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r5, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r5, 0xae80, 0x0) r6 = dup3(r3, r4, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r5, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r6, r5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:19:29 executing program 5: 07:19:29 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_dev$sndmidi(&(0x7f0000000040)='/dev/snd/midiC#D#\x00', 0x3, 0x301000) ioctl$EXT4_IOC_MIGRATE(r2, 0x6609) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) 07:19:29 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) r3 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) setsockopt$packet_rx_ring(r3, 0x107, 0x5, &(0x7f0000000080)=@req3={0x80000000, 0x1, 0x7fff, 0x610, 0x75eb30e3, 0x100, 0xfda00000}, 0x1c) ioctl$KVM_RUN(r2, 0xae80, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$TUNGETDEVNETNS(r5, 0x54e3, 0x0) r6 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r6, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:19:29 executing program 3: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = dup(r1) recvfrom(r2, &(0x7f00000001c0)=""/103, 0x67, 0x100, &(0x7f0000000400)=@tipc=@id={0x1e, 0x3, 0x3, {0xc33d, 0x3}}, 0x80) r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r4 = dup(r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r5, 0x1, 0x1000000000000f, &(0x7f0000000180)=0x57bb, 0x2ca) read$rfkill(r4, &(0x7f0000000040), 0x8) r6 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="b700000000000000070000000000080095000000000000006681eadd02afea58a4e2e8924f8b8bc08d2462379d2b36cfda626a978f53cc9d39d52452a220abef29cae97507e27b3664047d635f49e70656988f0bc9ab086ce0488c88ebea1f3f7421feb1615fe3225d4aa05bae26470409896298e0b2dae2823e1d7162c59b509969f682c96c8b7c03a3a299fb43042bb2b6362c5880dc714ea98df2e9d83441cb9b02909a5eb53fece60022ad"], &(0x7f0000000080)='GPL\x00', 0x1, 0xc3, &(0x7f0000000240)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfd6e}, 0x48) pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SG_SET_RESERVED_SIZE(r7, 0x2275, &(0x7f0000000100)=0x111d0c51) setsockopt$sock_attach_bpf(r5, 0x1, 0x34, &(0x7f0000009000)=r6, 0x4) 07:19:29 executing program 5: 07:19:29 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) getdents(r1, &(0x7f00000001c0)=""/169, 0xa9) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$VIDIOC_S_EXT_CTRLS(r1, 0xc0205648, &(0x7f0000000080)={0xa20000, 0x295, 0xffffffff, r1, 0x0, &(0x7f0000000040)={0x990a61, 0x3464, [], @ptr=0xe42}}) ioctl$SIOCAX25DELFWD(r4, 0x89eb, &(0x7f0000000100)={@bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}}) syz_init_net_socket$ax25(0x3, 0x3, 0xcc) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x4) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) 07:19:29 executing program 5: [ 1489.424748] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1489.440984] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1489.479615] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1489.505263] CPU: 0 PID: 24408 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1489.513196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1489.522559] Call Trace: [ 1489.525157] dump_stack+0x13e/0x194 [ 1489.528796] warn_alloc.cold+0x96/0x1af [ 1489.532865] ? zone_watermark_ok_safe+0x280/0x280 [ 1489.537727] ? wait_for_completion+0x390/0x390 [ 1489.542324] __alloc_pages_slowpath+0x2114/0x26c0 [ 1489.547191] ? warn_alloc+0xf0/0xf0 [ 1489.550824] ? find_held_lock+0x2d/0x110 [ 1489.554895] ? fs_reclaim_acquire+0x10/0x10 [ 1489.559235] __alloc_pages_nodemask+0x5d3/0x700 [ 1489.563073] syz-executor.0 cpuset= [ 1489.563908] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1489.563919] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1489.563929] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1489.563957] alloc_pages_current+0xe7/0x1e0 [ 1489.572042] syz0 [ 1489.572498] kvm_mmu_create+0xd1/0x1c0 [ 1489.588860] mems_allowed=0-1 [ 1489.592546] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1489.592560] ? alloc_pages_current+0xef/0x1e0 [ 1489.592573] kvm_vcpu_init+0x26d/0x360 [ 1489.592585] vmx_create_vcpu+0xf3/0x2900 [ 1489.592600] ? __mutex_unlock_slowpath+0x75/0x780 [ 1489.592611] ? futex_wake+0x11c/0x3d0 [ 1489.592620] ? handle_rdmsr+0x6b0/0x6b0 [ 1489.592633] kvm_vm_ioctl+0x49c/0x1430 [ 1489.592646] ? __lock_acquire+0x5f7/0x4620 [ 1489.592654] ? kvm_vcpu_release+0xa0/0xa0 [ 1489.592665] ? trace_hardirqs_on+0x10/0x10 [ 1489.641658] ? trace_hardirqs_on+0x10/0x10 [ 1489.645907] ? save_trace+0x290/0x290 [ 1489.649714] ? __might_fault+0x104/0x1b0 [ 1489.653787] ? kvm_vcpu_release+0xa0/0xa0 [ 1489.657953] do_vfs_ioctl+0x75a/0xfe0 [ 1489.661767] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1489.666530] ? ioctl_preallocate+0x1a0/0x1a0 [ 1489.670960] ? security_file_ioctl+0x76/0xb0 [ 1489.675400] ? security_file_ioctl+0x83/0xb0 [ 1489.679941] SyS_ioctl+0x7f/0xb0 [ 1489.683334] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1489.687321] do_syscall_64+0x1d5/0x640 [ 1489.691225] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1489.696419] RIP: 0033:0x45c849 [ 1489.699611] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1489.707324] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1489.714636] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1489.721918] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1489.729233] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1489.736504] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1489.752633] CPU: 1 PID: 24395 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1489.760564] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1489.770053] Call Trace: [ 1489.772663] dump_stack+0x13e/0x194 [ 1489.776309] warn_alloc.cold+0x96/0x1af [ 1489.780293] ? zone_watermark_ok_safe+0x280/0x280 [ 1489.785158] ? wait_for_completion+0x390/0x390 [ 1489.789756] __alloc_pages_slowpath+0x2114/0x26c0 [ 1489.794649] ? warn_alloc+0xf0/0xf0 [ 1489.798284] ? find_held_lock+0x2d/0x110 [ 1489.802359] ? fs_reclaim_acquire+0x10/0x10 [ 1489.806698] __alloc_pages_nodemask+0x5d3/0x700 [ 1489.811376] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1489.816399] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1489.821336] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1489.826369] alloc_pages_current+0xe7/0x1e0 [ 1489.830704] kvm_mmu_create+0xd1/0x1c0 [ 1489.834601] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1489.838928] ? alloc_pages_current+0xef/0x1e0 [ 1489.843438] kvm_vcpu_init+0x26d/0x360 [ 1489.847337] vmx_create_vcpu+0xf3/0x2900 [ 1489.851414] ? __mutex_unlock_slowpath+0x75/0x780 [ 1489.856264] ? futex_wake+0x11c/0x3d0 [ 1489.860090] ? handle_rdmsr+0x6b0/0x6b0 [ 1489.864086] kvm_vm_ioctl+0x49c/0x1430 [ 1489.867988] ? __lock_acquire+0x5f7/0x4620 [ 1489.872234] ? kvm_vcpu_release+0xa0/0xa0 [ 1489.876392] ? trace_hardirqs_on+0x10/0x10 [ 1489.880648] ? trace_hardirqs_on+0x10/0x10 [ 1489.884889] ? save_trace+0x290/0x290 [ 1489.888692] ? __might_fault+0x104/0x1b0 [ 1489.892775] ? kvm_vcpu_release+0xa0/0xa0 [ 1489.896936] do_vfs_ioctl+0x75a/0xfe0 [ 1489.900750] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1489.905516] ? ioctl_preallocate+0x1a0/0x1a0 [ 1489.909991] ? security_file_ioctl+0x76/0xb0 [ 1489.914429] ? security_file_ioctl+0x83/0xb0 [ 1489.918850] SyS_ioctl+0x7f/0xb0 [ 1489.922234] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1489.926219] do_syscall_64+0x1d5/0x640 [ 1489.930120] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1489.935312] RIP: 0033:0x45c849 [ 1489.938507] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1489.946219] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1489.953495] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1489.960774] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1489.968079] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1489.975359] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1490.338703] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1490.380168] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1490.394939] CPU: 1 PID: 24429 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1490.402873] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1490.412237] Call Trace: [ 1490.414841] dump_stack+0x13e/0x194 [ 1490.418486] warn_alloc.cold+0x96/0x1af [ 1490.422475] ? zone_watermark_ok_safe+0x280/0x280 [ 1490.427338] ? wait_for_completion+0x390/0x390 [ 1490.431936] __alloc_pages_slowpath+0x2114/0x26c0 [ 1490.436803] ? warn_alloc+0xf0/0xf0 [ 1490.440436] ? find_held_lock+0x2d/0x110 [ 1490.444505] ? fs_reclaim_acquire+0x10/0x10 [ 1490.448850] __alloc_pages_nodemask+0x5d3/0x700 [ 1490.453534] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1490.458560] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1490.463417] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1490.468459] alloc_pages_current+0xe7/0x1e0 [ 1490.472804] kvm_mmu_create+0xd1/0x1c0 [ 1490.476702] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1490.481036] ? alloc_pages_current+0xef/0x1e0 [ 1490.485549] kvm_vcpu_init+0x26d/0x360 [ 1490.489452] vmx_create_vcpu+0xf3/0x2900 [ 1490.493529] ? __mutex_unlock_slowpath+0x75/0x780 [ 1490.498385] ? futex_wake+0x11c/0x3d0 [ 1490.502195] ? handle_rdmsr+0x6b0/0x6b0 [ 1490.506189] kvm_vm_ioctl+0x49c/0x1430 [ 1490.510100] ? __lock_acquire+0x5f7/0x4620 [ 1490.514346] ? kvm_vcpu_release+0xa0/0xa0 [ 1490.518502] ? trace_hardirqs_on+0x10/0x10 [ 1490.522759] ? trace_hardirqs_on+0x10/0x10 [ 1490.527012] ? save_trace+0x290/0x290 [ 1490.530822] ? __might_fault+0x104/0x1b0 [ 1490.535245] ? kvm_vcpu_release+0xa0/0xa0 [ 1490.539405] do_vfs_ioctl+0x75a/0xfe0 [ 1490.543214] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1490.547980] ? ioctl_preallocate+0x1a0/0x1a0 [ 1490.552416] ? security_file_ioctl+0x76/0xb0 [ 1490.556956] ? security_file_ioctl+0x83/0xb0 [ 1490.561470] SyS_ioctl+0x7f/0xb0 [ 1490.564847] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1490.568864] do_syscall_64+0x1d5/0x640 [ 1490.572765] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1490.573906] warn_alloc_show_mem: 3 callbacks suppressed [ 1490.573909] Mem-Info: [ 1490.577949] RIP: 0033:0x45c849 [ 1490.577954] RSP: 002b:00007f75f723cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1490.577964] RAX: ffffffffffffffda RBX: 00007f75f723d6d4 RCX: 000000000045c849 [ 1490.577969] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1490.577977] RBP: 000000000076c040 R08: 0000000000000000 R09: 0000000000000000 [ 1490.615295] active_anon:796962 inactive_anon:200 isolated_anon:0 [ 1490.615295] active_file:7232 inactive_file:6165 isolated_file:7 [ 1490.615295] unevictable:0 dirty:24 writeback:20 unstable:0 [ 1490.615295] slab_reclaimable:12689 slab_unreclaimable:131656 [ 1490.615295] mapped:59070 shmem:534 pagetables:16266 bounce:0 [ 1490.615295] free:549480 free_pcp:114 free_cma:0 [ 1490.618397] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1490.618404] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076c04c [ 1490.927650] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:36kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):28kB mapped:208964kB dirty:0kB writeback:4kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1491.059156] Node 1 active_anon:1216840kB inactive_anon:16kB active_file:28892kB inactive_file:24656kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27320kB dirty:96kB writeback:76kB shmem:928kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 07:19:31 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$PIO_FONTX(r3, 0x4b6c, &(0x7f0000000480)={0xfc, 0x3, &(0x7f0000000080)="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"}) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x1) 07:19:31 executing program 5: [ 1491.194676] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 07:19:31 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) recvfrom$ax25(r3, &(0x7f00000001c0)=""/208, 0xd0, 0x2023, &(0x7f0000000040)={{0x3, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}}, [@bcast, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}]}, 0x48) 07:19:31 executing program 3: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$sock_int(r2, 0x1, 0x1000000000000f, &(0x7f0000000180)=0x57bb, 0x2ca) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000008000)={0x1, 0x3, &(0x7f0000000340)=ANY=[@ANYBLOB="b700000000000000070000000000000095000000000000006681eadd021316fc78e2e8924f8b8bc08d2462379d2b36cfda626a978f53cc9d39d52452a220abef29cae97507e27b3664047d635f49e70656988f0bc9ab086ce0488c88ebea1f3f7421feb1615fe3225d4aa05bae26470409896298e0b2dae2823e1d7162c59b509969f682c96c8b7c03a3a299fb43042bb2b6362c5880dc714ea98df2e9d83441cb9b0290965eb53fece60022ad"], &(0x7f0000000080)='GPL\x00', 0x1, 0xc3, &(0x7f0000000240)=""/195, 0x0, 0x0, [], 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfd6e}, 0x48) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$SG_GET_REQUEST_TABLE(r5, 0x2286, &(0x7f0000000400)) setsockopt$sock_attach_bpf(r2, 0x1, 0x34, &(0x7f0000009000)=r3, 0x4) 07:19:31 executing program 5: [ 1491.420765] lowmem_reserve[]: 0 2557 2557 2557 2557 07:19:31 executing program 3: 07:19:31 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$SOUND_MIXER_READ_RECMASK(r5, 0x80044dfd, &(0x7f0000000080)) ioctl$PPPIOCGFLAGS1(r3, 0x8004745a, &(0x7f0000000040)) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) [ 1491.467508] Node 0 DMA32 free:34284kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:60kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:72kB local_pcp:12kB free_cma:0kB [ 1491.642579] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1491.719052] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1491.719889] lowmem_reserve[]: 0 0 0 0 0 [ 1491.752535] CPU: 1 PID: 24460 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1491.752542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1491.752545] Call Trace: [ 1491.752561] dump_stack+0x13e/0x194 [ 1491.752575] warn_alloc.cold+0x96/0x1af [ 1491.779950] ? zone_watermark_ok_safe+0x280/0x280 [ 1491.784820] ? wait_for_completion+0x390/0x390 [ 1491.789418] __alloc_pages_slowpath+0x2114/0x26c0 [ 1491.794288] ? warn_alloc+0xf0/0xf0 [ 1491.797932] ? find_held_lock+0x2d/0x110 [ 1491.802002] ? fs_reclaim_acquire+0x10/0x10 [ 1491.806339] __alloc_pages_nodemask+0x5d3/0x700 [ 1491.811016] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1491.816039] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1491.820892] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1491.821580] Node 0 [ 1491.825929] alloc_pages_current+0xe7/0x1e0 [ 1491.825946] kvm_mmu_create+0xd1/0x1c0 [ 1491.825958] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1491.825969] ? alloc_pages_current+0xef/0x1e0 [ 1491.845184] kvm_vcpu_init+0x26d/0x360 [ 1491.849084] vmx_create_vcpu+0xf3/0x2900 [ 1491.850451] Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1491.853156] ? __mutex_unlock_slowpath+0x75/0x780 [ 1491.853169] ? futex_wake+0x11c/0x3d0 [ 1491.853179] ? handle_rdmsr+0x6b0/0x6b0 [ 1491.853195] kvm_vm_ioctl+0x49c/0x1430 [ 1491.894743] ? __lock_acquire+0x5f7/0x4620 [ 1491.898996] ? kvm_vcpu_release+0xa0/0xa0 [ 1491.903167] ? trace_hardirqs_on+0x10/0x10 [ 1491.907528] ? trace_hardirqs_on+0x10/0x10 [ 1491.911779] ? save_trace+0x290/0x290 [ 1491.915600] ? __might_fault+0x104/0x1b0 [ 1491.919769] ? kvm_vcpu_release+0xa0/0xa0 [ 1491.923929] do_vfs_ioctl+0x75a/0xfe0 [ 1491.927746] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1491.932519] ? ioctl_preallocate+0x1a0/0x1a0 [ 1491.936947] ? security_file_ioctl+0x76/0xb0 [ 1491.941369] ? security_file_ioctl+0x83/0xb0 [ 1491.945796] SyS_ioctl+0x7f/0xb0 [ 1491.949181] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1491.953167] do_syscall_64+0x1d5/0x640 [ 1491.957068] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1491.962261] RIP: 0033:0x45c849 [ 1491.965455] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1491.973174] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1491.980457] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1491.987737] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1491.995015] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1492.002301] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1492.016726] lowmem_reserve[]: 0 0 0 0 0 [ 1492.037093] Node 1 Normal free:2153100kB min:53612kB low:67012kB high:80412kB active_anon:1216844kB inactive_anon:16kB active_file:28892kB inactive_file:24676kB unevictable:0kB writepending:76kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12384kB pagetables:28244kB bounce:0kB free_pcp:1056kB local_pcp:516kB free_cma:0kB [ 1492.195365] lowmem_reserve[]: 0 0 0 0 0 [ 1492.214814] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1492.287200] Node 0 DMA32: 427*4kB (UME) 1439*8kB (UMEH) 790*16kB (UMEH) 246*32kB (UMEH) 9*64kB (MEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34308kB [ 1492.358386] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1492.410930] Node 1 Normal: 56*4kB (UM) 244*8kB (UM) 146*16kB (UME) 286*32kB (UME) 52*64kB (UE) 16*128kB (UM) 13*256kB (UME) 3*512kB (UE) 3*1024kB (UE) 6*2048kB (UME) 516*4096kB (UM) = 2152800kB [ 1492.491278] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1492.534129] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1492.583656] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1492.626341] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1492.667245] 13946 total pagecache pages [ 1492.687854] 0 pages in swap cache [ 1492.704783] Swap cache stats: add 0, delete 0, find 0/0 [ 1492.730133] Free swap = 0kB [ 1492.744628] Total swap = 0kB [ 1492.760459] 1965979 pages RAM [ 1492.774871] 0 pages HighMem/MovableOnly [ 1492.794960] 339049 pages reserved [ 1492.812346] 0 pages cma reserved 07:19:32 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000040)=[@timestamp, @sack_perm, @window={0x3, 0x8, 0x7ff}, @window={0x3, 0x0, 0x85c1}, @window={0x3, 0xca6b, 0x800}, @mss={0x2, 0x6acc}, @window={0x3, 0x1, 0x2}], 0x7) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) 07:19:32 executing program 5: 07:19:32 executing program 3: 07:19:33 executing program 3: 07:19:33 executing program 5: [ 1493.337419] warn_alloc_show_mem: 2 callbacks suppressed [ 1493.337423] Mem-Info: [ 1493.359904] active_anon:796978 inactive_anon:200 isolated_anon:0 [ 1493.359904] active_file:7239 inactive_file:6176 isolated_file:0 [ 1493.359904] unevictable:0 dirty:29 writeback:0 unstable:0 [ 1493.359904] slab_reclaimable:12715 slab_unreclaimable:131758 [ 1493.359904] mapped:59083 shmem:534 pagetables:16195 bounce:0 [ 1493.359904] free:549166 free_pcp:367 free_cma:0 [ 1493.485011] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:64kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208964kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1493.563336] Node 1 active_anon:1216752kB inactive_anon:16kB active_file:28892kB inactive_file:24700kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27468kB dirty:12kB writeback:0kB shmem:932kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1493.690679] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1493.791942] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1493.812955] Node 0 DMA32 free:34364kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:64kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:704kB local_pcp:52kB free_cma:0kB [ 1493.888931] lowmem_reserve[]: 0 0 0 0 0 [ 1493.900681] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1493.971059] lowmem_reserve[]: 0 0 0 0 0 [ 1493.980211] Node 1 Normal free:2150436kB min:53612kB low:67012kB high:80412kB active_anon:1216752kB inactive_anon:16kB active_file:28892kB inactive_file:24700kB unevictable:0kB writepending:0kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12288kB pagetables:28064kB bounce:0kB free_pcp:1084kB local_pcp:564kB free_cma:0kB [ 1494.049963] lowmem_reserve[]: 0 0 0 0 0 [ 1494.069029] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1494.112029] Node 0 DMA32: 427*4kB (UME) 1442*8kB (UMEH) 792*16kB (UMEH) 246*32kB (UMEH) 9*64kB (MEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34364kB [ 1494.152295] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1494.187170] Node 1 Normal: 71*4kB (UME) 121*8kB (UME) 17*16kB (UM) 284*32kB (UM) 53*64kB (U) 16*128kB (UM) 13*256kB (UME) 3*512kB (UE) 3*1024kB (UE) 6*2048kB (UME) 516*4096kB (UM) = 2149812kB [ 1494.246012] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1494.278378] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1494.301613] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1494.334236] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1494.359976] 13951 total pagecache pages [ 1494.369236] 0 pages in swap cache [ 1494.384130] Swap cache stats: add 0, delete 0, find 0/0 [ 1494.403753] Free swap = 0kB [ 1494.417097] Total swap = 0kB [ 1494.424066] 1965979 pages RAM [ 1494.435497] 0 pages HighMem/MovableOnly [ 1494.449797] 339049 pages reserved [ 1494.462354] 0 pages cma reserved 07:19:34 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$netlink_NETLINK_PKTINFO(r1, 0x10e, 0x3, &(0x7f0000000140)=0x7, 0x4) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b75fb3488fd8015bba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377aba09e7b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047706865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f00000000c0)=ANY=[@ANYBLOB="56b4730000000038bde4a7202f8f3fcd1fb69c6c3ce2a377e3aa0720fe631e4474637bda216fe2c7a858fff2314d58fe160c64b1a7c39c74165c9abc6476d4e98898c0c87122c87d87f3092fa4bd0000000000000000"], 0x1) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = fcntl$dupfd(r5, 0x0, r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$KVM_ARM_SET_DEVICE_ADDR(r6, 0x4010aeab, &(0x7f0000000080)={0xa2, 0xf000}) 07:19:34 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) r5 = fcntl$dupfd(r4, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r6, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r6, 0xae80, 0x0) r7 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r6, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r7, r6) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r9 = dup(r8) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200) removexattr(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=@random={'os2.', '/dev/kvm\x00'}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000140)=ANY=[@ANYBLOB="843ef619c4c68cb0201577559e646e7d2620e033439feecf1e6f8de8dc21ba2ce3419a53bc3e05fb4dcb5a532250723216cd02b5797b73db9b6e"], 0x1) 07:19:34 executing program 3: 07:19:34 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$FS_IOC_SETFLAGS(r3, 0x40086602, &(0x7f0000000040)=0x4) 07:19:34 executing program 5: 07:19:34 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/status\x00', 0x0, 0x0) r4 = syz_genetlink_get_family_id$net_dm(0x0) sendmsg$NET_DM_CMD_START(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x1000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000040)={0x14, r4, 0x0, 0x70bd2b, 0x25dfdbfc, {}, ["", ""]}, 0x14}, 0x1, 0x0, 0x0, 0x200020d0}, 0x40000) sendmsg$NET_DM_CMD_START(r3, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x14, r4, 0x10, 0x70bd25, 0x25dfdbfe, {}, [""]}, 0x14}, 0x1, 0x0, 0x0, 0x804}, 0x4046055) r5 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r5, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='\x00'], 0x1) 07:19:34 executing program 3: 07:19:34 executing program 5: 07:19:34 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) pkey_mprotect(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x3000006, 0xffffffffffffffff) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) mq_unlink(&(0x7f0000000040)='\\\x00') r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) setsockopt$inet_sctp_SCTP_HMAC_IDENT(r3, 0x84, 0x16, &(0x7f0000000080)={0x4, [0x400, 0xa19, 0x6, 0xb5a9]}, 0xc) 07:19:34 executing program 3: 07:19:34 executing program 5: [ 1494.832577] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1494.855988] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) 07:19:34 executing program 3: [ 1494.883629] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1494.904429] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1494.925583] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1494.929615] CPU: 1 PID: 24557 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1494.944116] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1494.953478] Call Trace: [ 1494.956078] dump_stack+0x13e/0x194 [ 1494.959724] warn_alloc.cold+0x96/0x1af [ 1494.963715] ? zone_watermark_ok_safe+0x280/0x280 [ 1494.968764] ? wait_for_completion+0x390/0x390 [ 1494.973363] __alloc_pages_slowpath+0x2114/0x26c0 [ 1494.978232] ? warn_alloc+0xf0/0xf0 [ 1494.981870] ? find_held_lock+0x2d/0x110 [ 1494.985950] ? fs_reclaim_acquire+0x10/0x10 [ 1494.990296] __alloc_pages_nodemask+0x5d3/0x700 [ 1494.990513] syz-executor.4 cpuset= [ 1494.995092] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1494.995103] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1494.995113] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1494.995134] alloc_pages_current+0xe7/0x1e0 [ 1495.008899] syz4 [ 1495.013637] kvm_mmu_create+0xd1/0x1c0 [ 1495.023803] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1495.028210] ? alloc_pages_current+0xef/0x1e0 [ 1495.032719] kvm_vcpu_init+0x26d/0x360 [ 1495.036621] vmx_create_vcpu+0xf3/0x2900 [ 1495.040700] ? __mutex_unlock_slowpath+0x75/0x780 [ 1495.045550] ? futex_wake+0x11c/0x3d0 [ 1495.046817] mems_allowed=0-1 [ 1495.049353] ? handle_rdmsr+0x6b0/0x6b0 [ 1495.049372] kvm_vm_ioctl+0x49c/0x1430 [ 1495.049386] ? __lock_acquire+0x5f7/0x4620 [ 1495.064552] ? kvm_vcpu_release+0xa0/0xa0 [ 1495.068707] ? trace_hardirqs_on+0x10/0x10 [ 1495.074087] ? trace_hardirqs_on+0x10/0x10 [ 1495.078335] ? save_trace+0x290/0x290 [ 1495.082248] ? __might_fault+0x104/0x1b0 [ 1495.086316] ? kvm_vcpu_release+0xa0/0xa0 [ 1495.090468] do_vfs_ioctl+0x75a/0xfe0 [ 1495.094271] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1495.099041] ? ioctl_preallocate+0x1a0/0x1a0 [ 1495.103469] ? security_file_ioctl+0x76/0xb0 [ 1495.107879] ? security_file_ioctl+0x83/0xb0 [ 1495.112289] SyS_ioctl+0x7f/0xb0 [ 1495.115657] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1495.119762] do_syscall_64+0x1d5/0x640 [ 1495.123668] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1495.128871] RIP: 0033:0x45c849 [ 1495.132058] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1495.140387] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1495.147654] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000006 [ 1495.154925] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1495.162204] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1495.169486] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1495.176783] CPU: 0 PID: 24555 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1495.184704] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1495.194068] Call Trace: [ 1495.196679] dump_stack+0x13e/0x194 [ 1495.200318] warn_alloc.cold+0x96/0x1af [ 1495.204299] ? zone_watermark_ok_safe+0x280/0x280 [ 1495.209170] ? wait_for_completion+0x390/0x390 [ 1495.213769] __alloc_pages_slowpath+0x2114/0x26c0 [ 1495.218632] ? warn_alloc+0xf0/0xf0 [ 1495.222318] ? find_held_lock+0x2d/0x110 [ 1495.226399] ? fs_reclaim_acquire+0x10/0x10 [ 1495.230732] __alloc_pages_nodemask+0x5d3/0x700 [ 1495.235415] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1495.240441] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1495.245295] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1495.250329] alloc_pages_current+0xe7/0x1e0 [ 1495.254660] kvm_mmu_create+0xd1/0x1c0 [ 1495.258562] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1495.262999] ? alloc_pages_current+0xef/0x1e0 [ 1495.267581] kvm_vcpu_init+0x26d/0x360 [ 1495.271474] vmx_create_vcpu+0xf3/0x2900 [ 1495.275543] ? __mutex_unlock_slowpath+0x75/0x780 [ 1495.280397] ? futex_wake+0x11c/0x3d0 [ 1495.284203] ? handle_rdmsr+0x6b0/0x6b0 [ 1495.288200] kvm_vm_ioctl+0x49c/0x1430 [ 1495.292221] ? __lock_acquire+0x5f7/0x4620 [ 1495.296481] ? kvm_vcpu_release+0xa0/0xa0 [ 1495.300632] ? trace_hardirqs_on+0x10/0x10 [ 1495.304878] ? trace_hardirqs_on+0x10/0x10 [ 1495.315724] ? save_trace+0x290/0x290 [ 1495.319533] ? __might_fault+0x104/0x1b0 [ 1495.323605] ? kvm_vcpu_release+0xa0/0xa0 [ 1495.327771] do_vfs_ioctl+0x75a/0xfe0 [ 1495.331588] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1495.336375] ? ioctl_preallocate+0x1a0/0x1a0 [ 1495.340798] ? security_file_ioctl+0x76/0xb0 [ 1495.345216] ? security_file_ioctl+0x83/0xb0 [ 1495.349638] SyS_ioctl+0x7f/0xb0 [ 1495.353016] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1495.357101] do_syscall_64+0x1d5/0x640 [ 1495.361084] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1495.366269] RIP: 0033:0x45c849 [ 1495.369456] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1495.377165] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1495.384443] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1495.391806] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1495.399089] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1495.406363] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1495.413653] CPU: 1 PID: 24556 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1495.421553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1495.430916] Call Trace: [ 1495.433517] dump_stack+0x13e/0x194 [ 1495.437158] warn_alloc.cold+0x96/0x1af [ 1495.441145] ? zone_watermark_ok_safe+0x280/0x280 [ 1495.446004] ? wait_for_completion+0x390/0x390 [ 1495.450607] __alloc_pages_slowpath+0x2114/0x26c0 [ 1495.455478] ? warn_alloc+0xf0/0xf0 [ 1495.459147] ? find_held_lock+0x2d/0x110 [ 1495.463219] ? fs_reclaim_acquire+0x10/0x10 [ 1495.467554] __alloc_pages_nodemask+0x5d3/0x700 [ 1495.472228] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1495.477249] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1495.482100] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1495.487913] alloc_pages_current+0xe7/0x1e0 [ 1495.492242] kvm_mmu_create+0xd1/0x1c0 [ 1495.496140] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1495.500460] ? alloc_pages_current+0xef/0x1e0 [ 1495.504945] kvm_vcpu_init+0x26d/0x360 [ 1495.508822] vmx_create_vcpu+0xf3/0x2900 [ 1495.512874] ? __mutex_unlock_slowpath+0x75/0x780 [ 1495.517700] ? futex_wake+0x11c/0x3d0 [ 1495.521491] ? handle_rdmsr+0x6b0/0x6b0 [ 1495.525452] kvm_vm_ioctl+0x49c/0x1430 [ 1495.529325] ? __lock_acquire+0x5f7/0x4620 [ 1495.533543] ? kvm_vcpu_release+0xa0/0xa0 [ 1495.537766] ? trace_hardirqs_on+0x10/0x10 [ 1495.541991] ? trace_hardirqs_on+0x10/0x10 [ 1495.546223] ? save_trace+0x290/0x290 [ 1495.550031] ? __might_fault+0x104/0x1b0 [ 1495.554080] ? kvm_vcpu_release+0xa0/0xa0 [ 1495.558211] do_vfs_ioctl+0x75a/0xfe0 [ 1495.562003] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1495.566742] ? ioctl_preallocate+0x1a0/0x1a0 [ 1495.571157] ? security_file_ioctl+0x76/0xb0 [ 1495.575550] ? security_file_ioctl+0x83/0xb0 [ 1495.579963] SyS_ioctl+0x7f/0xb0 [ 1495.583327] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1495.587287] do_syscall_64+0x1d5/0x640 [ 1495.591162] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1495.596345] RIP: 0033:0x45c849 [ 1495.599516] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1495.607327] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1495.614593] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1495.621856] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1495.629112] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1495.636366] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1495.754688] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1495.778611] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1495.790926] CPU: 0 PID: 24588 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1495.798842] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1495.808206] Call Trace: [ 1495.810806] dump_stack+0x13e/0x194 [ 1495.814448] warn_alloc.cold+0x96/0x1af [ 1495.818444] ? zone_watermark_ok_safe+0x280/0x280 [ 1495.823321] ? wait_for_completion+0x390/0x390 [ 1495.827917] __alloc_pages_slowpath+0x2114/0x26c0 [ 1495.832780] ? warn_alloc+0xf0/0xf0 [ 1495.836416] ? find_held_lock+0x2d/0x110 [ 1495.840493] ? fs_reclaim_acquire+0x10/0x10 [ 1495.844846] __alloc_pages_nodemask+0x5d3/0x700 [ 1495.849528] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1495.854560] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1495.859409] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1495.864633] alloc_pages_current+0xe7/0x1e0 [ 1495.868971] kvm_mmu_create+0xd1/0x1c0 [ 1495.872904] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1495.879059] ? alloc_pages_current+0xef/0x1e0 [ 1495.883589] kvm_vcpu_init+0x26d/0x360 [ 1495.887487] vmx_create_vcpu+0xf3/0x2900 [ 1495.891564] ? __mutex_unlock_slowpath+0x75/0x780 [ 1495.896423] ? futex_wake+0x11c/0x3d0 [ 1495.900274] ? handle_rdmsr+0x6b0/0x6b0 [ 1495.904263] kvm_vm_ioctl+0x49c/0x1430 [ 1495.908160] ? __lock_acquire+0x5f7/0x4620 [ 1495.912407] ? kvm_vcpu_release+0xa0/0xa0 [ 1495.916572] ? trace_hardirqs_on+0x10/0x10 [ 1495.920826] ? trace_hardirqs_on+0x10/0x10 [ 1495.925072] ? save_trace+0x290/0x290 [ 1495.928883] ? __might_fault+0x104/0x1b0 [ 1495.932949] ? kvm_vcpu_release+0xa0/0xa0 [ 1495.937104] do_vfs_ioctl+0x75a/0xfe0 [ 1495.940913] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1495.945680] ? ioctl_preallocate+0x1a0/0x1a0 [ 1495.950106] ? security_file_ioctl+0x76/0xb0 [ 1495.954632] ? security_file_ioctl+0x83/0xb0 [ 1495.959060] SyS_ioctl+0x7f/0xb0 [ 1495.962437] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1495.966426] do_syscall_64+0x1d5/0x640 [ 1495.970329] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1495.975523] RIP: 0033:0x45c849 [ 1495.978713] RSP: 002b:00007f4840a0dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1495.986435] RAX: ffffffffffffffda RBX: 00007f4840a0e6d4 RCX: 000000000045c849 [ 1495.993712] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1496.000990] RBP: 000000000076c040 R08: 0000000000000000 R09: 0000000000000000 [ 1496.008267] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1496.015545] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076c04c [ 1496.246872] Mem-Info: [ 1496.253669] active_anon:797028 inactive_anon:199 isolated_anon:0 [ 1496.253669] active_file:7238 inactive_file:6193 isolated_file:0 [ 1496.253669] unevictable:0 dirty:25 writeback:0 unstable:0 [ 1496.253669] slab_reclaimable:12736 slab_unreclaimable:132151 [ 1496.253669] mapped:59095 shmem:535 pagetables:16279 bounce:0 [ 1496.253669] free:548420 free_pcp:561 free_cma:0 07:19:36 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$sock_bt_bnep_BNEPCONNDEL(r1, 0x400442c9, &(0x7f0000000040)={0x40, @dev={[], 0x3d}}) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) [ 1496.333914] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:60kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208964kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1496.413887] Node 1 active_anon:1216952kB inactive_anon:12kB active_file:28892kB inactive_file:24764kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27416kB dirty:96kB writeback:0kB shmem:936kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1496.502727] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1496.568735] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1496.583088] Node 0 DMA32 free:34712kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:60kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:1240kB local_pcp:552kB free_cma:0kB [ 1496.669940] lowmem_reserve[]: 0 0 0 0 0 [ 1496.685177] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1496.747970] lowmem_reserve[]: 0 0 0 0 0 [ 1496.768899] Node 1 Normal free:2150840kB min:53612kB low:67012kB high:80412kB active_anon:1216852kB inactive_anon:12kB active_file:28892kB inactive_file:24764kB unevictable:0kB writepending:100kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12256kB pagetables:28104kB bounce:0kB free_pcp:1140kB local_pcp:612kB free_cma:0kB [ 1496.864762] lowmem_reserve[]: 0 0 0 0 0 [ 1496.881458] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1496.914938] Node 0 DMA32: 632*4kB (UME) 1444*8kB (UMEH) 794*16kB (UMEH) 246*32kB (UMEH) 9*64kB (MEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 35232kB [ 1496.953044] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1496.988700] Node 1 Normal: 130*4kB (UME) 155*8kB (UME) 192*16kB (UME) 170*32kB (UME) 54*64kB (UE) 11*128kB (UM) 9*256kB (UE) 4*512kB (UE) 4*1024kB (UE) 6*2048kB (UME) 516*4096kB (UM) = 2149408kB [ 1497.046060] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1497.074096] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1497.100847] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1497.119872] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1497.149523] 13968 total pagecache pages [ 1497.162937] 0 pages in swap cache [ 1497.174919] Swap cache stats: add 0, delete 0, find 0/0 [ 1497.187193] Free swap = 0kB [ 1497.195931] Total swap = 0kB [ 1497.205786] 1965979 pages RAM [ 1497.215912] 0 pages HighMem/MovableOnly [ 1497.224474] 339049 pages reserved [ 1497.231529] 0 pages cma reserved 07:19:37 executing program 3: 07:19:37 executing program 5: 07:19:37 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) getsockopt$inet_sctp_SCTP_GET_PEER_ADDRS(r1, 0x84, 0x6c, &(0x7f0000000000)={0x0, 0x2b, "c2e3f841535f51ba3b800fb66e59f2fdf33f0decb3f420e18edd24aea07d546df636319350b57941e94dd3"}, &(0x7f0000000080)=0x33) setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000100)={r2, 0x7}, 0x8) r3 = getpid() sched_setattr(r3, &(0x7f00000000c0)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0) getpgrp(r3) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$SNDRV_CTL_IOCTL_RAWMIDI_PREFER_SUBDEVICE(r5, 0x40045542, &(0x7f00000001c0)=0x2) clock_gettime(0x0, &(0x7f0000000300)={0x0, 0x0}) rt_sigtimedwait(&(0x7f0000000240)={[0x1]}, &(0x7f0000000280), &(0x7f0000000340)={r6, r7+10000000}, 0x8) ioctl$TIOCMGET(r1, 0x5415, &(0x7f0000000200)) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000040)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) 07:19:37 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) socket$isdn_base(0x22, 0x3, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:19:37 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) getsockname$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="70010000100a10d6adceb200010800"/26, @ANYRES32=r4, @ANYBLOB="000000000000000050011a800c000a800500080002000000300002802c00018008001600000000000800000000000000080000000000000008000000000000000800000000000000180002801400018008000d000000000008000f000000000040000a8014000700ff02000000000000000000000000000114000700ff02000000000000000000000000000114000700fe8000000000000000000000000000002800028024000180080000000000000008000000000000000800000000000000080000000000000004001c0088000a801400070026f9a73e00b66d277fd9bb82321e256b0500080000000000050008000000000014000700fe80000000000000000000000000000014000700ff020000000000000000000000000001140007008abaf2f5fd2e3917ed47d725c2c4875314000700fe8000000000000000000000000000000500080000000004050008000000000004001c00"], 0x170}}, 0x0) sendmsg$ETHTOOL_MSG_LINKMODES_GET(0xffffffffffffffff, &(0x7f0000000ec0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000e80)={&(0x7f0000000b80)={0x2c4, 0x0, 0x10, 0x70bd2c, 0x25dfdbff, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x3c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvtap0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_LINKMODES_HEADER={0x48, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'geneve0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netpci0\x00'}]}, @ETHTOOL_A_LINKMODES_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'sit0\x00'}]}, @ETHTOOL_A_LINKMODES_HEADER={0x38, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg2\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}]}, @ETHTOOL_A_LINKMODES_HEADER={0x58, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'batadv_slave_1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'caif0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_vlan\x00'}]}, @ETHTOOL_A_LINKMODES_HEADER={0x78, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0_to_batadv\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macvlan0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}]}, @ETHTOOL_A_LINKMODES_HEADER={0x4}, @ETHTOOL_A_LINKMODES_HEADER={0x1c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x3}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}]}, @ETHTOOL_A_LINKMODES_HEADER={0x68, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'ip6_vti0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'bridge0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x1}]}, @ETHTOOL_A_LINKMODES_HEADER={0x7c, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan0\x00'}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8}, @ETHTOOL_A_HEADER_FLAGS={0x8, 0x3, 0x2}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'vlan1\x00'}, @ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'macsec0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r4}]}]}, 0x2c4}, 0x1, 0x0, 0x0, 0x4080}, 0x20000000) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = fcntl$dupfd(r5, 0x0, r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) r7 = getuid() mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='9p\x00', 0x2080059, &(0x7f0000000100)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r3, @ANYBLOB="2c77663931c18a", @ANYRESHEX=r6, @ANYBLOB=',euid<', @ANYRESDEC=r7, @ANYBLOB=',smackfsdef=/dev/kvm\x00,context=system_u,\x00']) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r8 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r8, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r8, 0xae80, 0x0) ioctl$BLKBSZSET(r3, 0x40081271, &(0x7f0000000180)=0x5) ioctl$KVM_TPR_ACCESS_REPORTING(r8, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f00000003c0)=ANY=[@ANYBLOB="bbb8ab74c38eaacd0f3b8c97ef214e8c367edd2152"], 0x1) 07:19:37 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$VT_SETMODE(r4, 0x5602, &(0x7f0000000080)={0xff, 0xa7, 0x400, 0x6, 0x6}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r5 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r5, r2) getsockname$packet(0xffffffffffffffff, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=@newlink={0xec, 0x10, 0x801, 0x0, 0x0, {0x0, 0x0, 0x0, r6}, [@IFLA_AF_SPEC={0xcc, 0x1a, 0x0, 0x1, [@AF_INET6={0x18, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @local}]}, @AF_INET={0x30, 0x2, 0x0, 0x1, {0x2c, 0x1, 0x0, 0x1, [{0xc, 0x16}, {0x8}, {0x1b}, {0x8}, {0x8}]}}, @AF_INET={0x18, 0x2, 0x0, 0x1, {0x14, 0x1, 0x0, 0x1, [{0x8, 0xd}, {0x8, 0xf}]}}, @AF_INET6={0x18, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x14, 0x7, @mcast2}, @IFLA_INET6_TOKEN={0x0, 0x7, @mcast2}, @IFLA_INET6_TOKEN={0x0, 0x7, @dev}]}, @AF_INET={0x28, 0x2, 0x0, 0x1, {0x24, 0x1, 0x0, 0x1, [{0x8}, {0x8}, {0x8}, {0x8}]}}, @AF_MPLS={0x4}, @AF_INET6={0x0, 0xa, 0x0, 0x1, [@IFLA_INET6_TOKEN={0x0, 0x7, @rand_addr="26f9a73e00b66d277fd9bb82321e256b"}, @IFLA_INET6_ADDR_GEN_MODE, @IFLA_INET6_ADDR_GEN_MODE, @IFLA_INET6_TOKEN={0x0, 0x7, @dev}, @IFLA_INET6_TOKEN={0x0, 0x7, @mcast2}, @IFLA_INET6_TOKEN={0x0, 0x7, @rand_addr="8abaf2f5fd2e3917ed47d725c2c48753"}, @IFLA_INET6_TOKEN={0x0, 0x7, @dev}, @IFLA_INET6_ADDR_GEN_MODE, @IFLA_INET6_ADDR_GEN_MODE]}, @AF_MPLS={0x4}]}]}, 0xec}}, 0x0) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'ipvlan0\x00', r6}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:19:37 executing program 5: 07:19:37 executing program 3: 07:19:37 executing program 5: 07:19:37 executing program 3: 07:19:37 executing program 5: 07:19:37 executing program 3: [ 1497.648500] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1497.677717] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1497.690132] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1497.736251] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1497.750786] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1497.755822] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1497.765196] CPU: 0 PID: 24650 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1497.773105] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1497.782479] Call Trace: [ 1497.785085] dump_stack+0x13e/0x194 [ 1497.788725] warn_alloc.cold+0x96/0x1af [ 1497.792703] ? zone_watermark_ok_safe+0x280/0x280 [ 1497.797556] ? wait_for_completion+0x390/0x390 [ 1497.802142] __alloc_pages_slowpath+0x2114/0x26c0 [ 1497.807092] ? warn_alloc+0xf0/0xf0 [ 1497.810720] ? find_held_lock+0x2d/0x110 [ 1497.814797] ? fs_reclaim_acquire+0x10/0x10 [ 1497.819139] __alloc_pages_nodemask+0x5d3/0x700 [ 1497.823831] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1497.828862] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1497.833712] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1497.838748] alloc_pages_current+0xe7/0x1e0 [ 1497.843078] kvm_mmu_create+0xd1/0x1c0 [ 1497.846975] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1497.851318] ? alloc_pages_current+0xef/0x1e0 [ 1497.855846] kvm_vcpu_init+0x26d/0x360 [ 1497.859749] vmx_create_vcpu+0xf3/0x2900 [ 1497.863822] ? __mutex_unlock_slowpath+0x75/0x780 [ 1497.868676] ? futex_wake+0x11c/0x3d0 [ 1497.872476] ? handle_rdmsr+0x6b0/0x6b0 [ 1497.876453] kvm_vm_ioctl+0x49c/0x1430 [ 1497.880340] ? __lock_acquire+0x5f7/0x4620 [ 1497.884581] ? kvm_vcpu_release+0xa0/0xa0 [ 1497.888738] ? trace_hardirqs_on+0x10/0x10 [ 1497.892995] ? trace_hardirqs_on+0x10/0x10 [ 1497.897241] ? save_trace+0x290/0x290 [ 1497.901047] ? __might_fault+0x104/0x1b0 [ 1497.905120] ? kvm_vcpu_release+0xa0/0xa0 [ 1497.909277] do_vfs_ioctl+0x75a/0xfe0 [ 1497.913086] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1497.917875] ? ioctl_preallocate+0x1a0/0x1a0 [ 1497.922312] ? security_file_ioctl+0x76/0xb0 [ 1497.926732] ? security_file_ioctl+0x83/0xb0 [ 1497.931168] SyS_ioctl+0x7f/0xb0 [ 1497.934541] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1497.938525] do_syscall_64+0x1d5/0x640 [ 1497.942429] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1497.947624] RIP: 0033:0x45c849 [ 1497.950817] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1497.958556] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1497.965831] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1497.973115] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1497.980385] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1497.987655] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1497.994938] CPU: 1 PID: 24644 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1498.002830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1498.012189] Call Trace: [ 1498.014798] dump_stack+0x13e/0x194 [ 1498.018436] warn_alloc.cold+0x96/0x1af [ 1498.022412] ? zone_watermark_ok_safe+0x280/0x280 [ 1498.027282] ? wait_for_completion+0x390/0x390 [ 1498.031888] __alloc_pages_slowpath+0x2114/0x26c0 [ 1498.036757] ? warn_alloc+0xf0/0xf0 [ 1498.040395] ? find_held_lock+0x2d/0x110 [ 1498.044456] ? fs_reclaim_acquire+0x10/0x10 [ 1498.048793] __alloc_pages_nodemask+0x5d3/0x700 [ 1498.053472] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1498.058493] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1498.063519] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1498.068556] alloc_pages_current+0xe7/0x1e0 [ 1498.072888] kvm_mmu_create+0xd1/0x1c0 [ 1498.076777] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1498.081109] ? alloc_pages_current+0xef/0x1e0 [ 1498.085622] kvm_vcpu_init+0x26d/0x360 [ 1498.089518] vmx_create_vcpu+0xf3/0x2900 [ 1498.093586] ? __mutex_unlock_slowpath+0x75/0x780 [ 1498.098437] ? futex_wake+0x11c/0x3d0 [ 1498.102245] ? handle_rdmsr+0x6b0/0x6b0 [ 1498.106221] kvm_vm_ioctl+0x49c/0x1430 [ 1498.110122] ? __lock_acquire+0x5f7/0x4620 [ 1498.114358] ? kvm_vcpu_release+0xa0/0xa0 [ 1498.118505] ? trace_hardirqs_on+0x10/0x10 [ 1498.122749] ? trace_hardirqs_on+0x10/0x10 [ 1498.127006] ? save_trace+0x290/0x290 [ 1498.130807] ? __might_fault+0x104/0x1b0 [ 1498.134870] ? kvm_vcpu_release+0xa0/0xa0 [ 1498.139014] do_vfs_ioctl+0x75a/0xfe0 [ 1498.142815] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1498.147575] ? ioctl_preallocate+0x1a0/0x1a0 [ 1498.151998] ? security_file_ioctl+0x76/0xb0 [ 1498.156411] ? security_file_ioctl+0x83/0xb0 [ 1498.160835] SyS_ioctl+0x7f/0xb0 [ 1498.164205] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1498.168179] do_syscall_64+0x1d5/0x640 [ 1498.172081] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1498.177274] RIP: 0033:0x45c849 [ 1498.180468] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 07:19:38 executing program 5: syz_emit_ethernet(0x300cce, &(0x7f0000000080)={@local, @empty, @val={@val={0x8100}}, {@ipv6={0x86dd, @generic={0x0, 0x6, '\x00', 0x0, 0x0, 0x0, @rand_addr="00000000000089ffffff00"}}}}, 0x0) [ 1498.188183] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1498.195457] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1498.203271] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1498.210546] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1498.217817] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1498.225763] CPU: 0 PID: 24642 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1498.233669] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1498.243205] Call Trace: [ 1498.243225] dump_stack+0x13e/0x194 [ 1498.243245] warn_alloc.cold+0x96/0x1af [ 1498.253557] ? zone_watermark_ok_safe+0x280/0x280 [ 1498.258423] ? wait_for_completion+0x390/0x390 [ 1498.263019] __alloc_pages_slowpath+0x2114/0x26c0 [ 1498.267896] ? warn_alloc+0xf0/0xf0 [ 1498.271532] ? find_held_lock+0x2d/0x110 [ 1498.275628] ? fs_reclaim_acquire+0x10/0x10 [ 1498.279964] __alloc_pages_nodemask+0x5d3/0x700 [ 1498.284645] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1498.289682] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1498.294541] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1498.299605] alloc_pages_current+0xe7/0x1e0 [ 1498.303941] kvm_mmu_create+0xd1/0x1c0 [ 1498.307850] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1498.312191] ? alloc_pages_current+0xef/0x1e0 [ 1498.316697] kvm_vcpu_init+0x26d/0x360 [ 1498.320604] vmx_create_vcpu+0xf3/0x2900 [ 1498.324680] ? __mutex_unlock_slowpath+0x75/0x780 [ 1498.329542] ? futex_wake+0x11c/0x3d0 [ 1498.333355] ? handle_rdmsr+0x6b0/0x6b0 [ 1498.337452] kvm_vm_ioctl+0x49c/0x1430 [ 1498.341353] ? __lock_acquire+0x5f7/0x4620 [ 1498.345595] ? kvm_vcpu_release+0xa0/0xa0 [ 1498.349754] ? trace_hardirqs_on+0x10/0x10 [ 1498.354003] ? trace_hardirqs_on+0x10/0x10 [ 1498.358336] ? save_trace+0x290/0x290 [ 1498.362146] ? __might_fault+0x104/0x1b0 [ 1498.366221] ? kvm_vcpu_release+0xa0/0xa0 [ 1498.370488] do_vfs_ioctl+0x75a/0xfe0 [ 1498.374295] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1498.379062] ? ioctl_preallocate+0x1a0/0x1a0 [ 1498.383497] ? security_file_ioctl+0x76/0xb0 [ 1498.387911] ? security_file_ioctl+0x83/0xb0 [ 1498.392327] SyS_ioctl+0x7f/0xb0 [ 1498.395814] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1498.399803] do_syscall_64+0x1d5/0x640 [ 1498.403703] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1498.403712] RIP: 0033:0x45c849 [ 1498.403718] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1498.403728] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1498.403733] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 07:19:38 executing program 2: socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) 07:19:38 executing program 3: pipe(&(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000140)=ANY=[@ANYBLOB="340000000a06010000d4000000000000000000100c00078008000940001000000900020073797a30000000000500010006"], 0x1}}, 0x0) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x4240a2a0) splice(r0, 0x0, r2, 0x0, 0x10001, 0x0) [ 1498.403740] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1498.441701] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1498.448963] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1498.568170] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1498.615826] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1498.646135] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1498.662863] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1498.668529] CPU: 1 PID: 24683 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1498.676424] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1498.685785] Call Trace: [ 1498.688381] dump_stack+0x13e/0x194 [ 1498.692017] warn_alloc.cold+0x96/0x1af [ 1498.695992] ? zone_watermark_ok_safe+0x280/0x280 [ 1498.700851] ? wait_for_completion+0x390/0x390 [ 1498.705440] __alloc_pages_slowpath+0x2114/0x26c0 [ 1498.710301] ? warn_alloc+0xf0/0xf0 [ 1498.713930] ? find_held_lock+0x2d/0x110 [ 1498.718002] ? fs_reclaim_acquire+0x10/0x10 [ 1498.722335] __alloc_pages_nodemask+0x5d3/0x700 [ 1498.727010] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1498.732029] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1498.736870] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1498.741902] alloc_pages_current+0xe7/0x1e0 [ 1498.746235] kvm_mmu_create+0xd1/0x1c0 [ 1498.750138] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1498.754466] ? alloc_pages_current+0xef/0x1e0 [ 1498.758968] kvm_vcpu_init+0x26d/0x360 [ 1498.762859] vmx_create_vcpu+0xf3/0x2900 [ 1498.766943] ? __mutex_unlock_slowpath+0x75/0x780 [ 1498.771787] ? futex_wake+0x11c/0x3d0 [ 1498.775592] ? handle_rdmsr+0x6b0/0x6b0 [ 1498.776374] warn_alloc_show_mem: 3 callbacks suppressed [ 1498.776377] Mem-Info: [ 1498.779569] kvm_vm_ioctl+0x49c/0x1430 [ 1498.779582] ? __lock_acquire+0x5f7/0x4620 [ 1498.779593] ? kvm_vcpu_release+0xa0/0xa0 [ 1498.794756] active_anon:797057 inactive_anon:200 isolated_anon:0 [ 1498.794756] active_file:7240 inactive_file:6196 isolated_file:0 [ 1498.794756] unevictable:0 dirty:18 writeback:0 unstable:0 [ 1498.794756] slab_reclaimable:12646 slab_unreclaimable:132275 [ 1498.794756] mapped:59072 shmem:535 pagetables:16282 bounce:0 [ 1498.794756] free:548328 free_pcp:491 free_cma:0 [ 1498.795455] ? trace_hardirqs_on+0x10/0x10 [ 1498.805987] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:68kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208964kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1498.833271] ? trace_hardirqs_on+0x10/0x10 [ 1498.833284] ? save_trace+0x290/0x290 [ 1498.833295] ? __might_fault+0x104/0x1b0 [ 1498.833309] ? kvm_vcpu_release+0xa0/0xa0 [ 1498.833321] do_vfs_ioctl+0x75a/0xfe0 [ 1498.833337] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1498.869884] Node 1 active_anon:1217168kB inactive_anon:16kB active_file:28892kB inactive_file:24784kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27324kB dirty:68kB writeback:0kB shmem:936kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1498.873261] ? ioctl_preallocate+0x1a0/0x1a0 [ 1498.873283] ? security_file_ioctl+0x76/0xb0 [ 1498.873294] ? security_file_ioctl+0x83/0xb0 [ 1498.880741] Node 0 [ 1498.881480] SyS_ioctl+0x7f/0xb0 [ 1498.881491] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1498.891411] DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1498.918226] do_syscall_64+0x1d5/0x640 [ 1498.918243] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1498.918251] RIP: 0033:0x45c849 [ 1498.918258] RSP: 002b:00007f75f721bc78 EFLAGS: 00000246 [ 1498.957722] lowmem_reserve[]: [ 1498.967122] ORIG_RAX: 0000000000000010 [ 1498.967128] RAX: ffffffffffffffda RBX: 00007f75f721c6d4 RCX: 000000000045c849 [ 1498.967134] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1498.967139] RBP: 000000000076c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1498.967144] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1498.967148] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076c0ec [ 1498.978371] CPU: 1 PID: 24657 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1499.036597] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1499.045949] Call Trace: [ 1499.048362] 0 2557 [ 1499.048537] dump_stack+0x13e/0x194 [ 1499.048551] warn_alloc.cold+0x96/0x1af [ 1499.055874] 2557 [ 1499.058355] ? zone_watermark_ok_safe+0x280/0x280 [ 1499.058377] ? wait_for_completion+0x390/0x390 [ 1499.069840] __alloc_pages_slowpath+0x2114/0x26c0 [ 1499.074705] ? warn_alloc+0xf0/0xf0 [ 1499.078342] ? find_held_lock+0x2d/0x110 [ 1499.082413] ? fs_reclaim_acquire+0x10/0x10 [ 1499.083341] 2557 [ 1499.086745] __alloc_pages_nodemask+0x5d3/0x700 [ 1499.086760] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1499.096254] 2557 [ 1499.098608] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1499.098622] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1499.098643] alloc_pages_current+0xe7/0x1e0 [ 1499.114885] kvm_mmu_create+0xd1/0x1c0 [ 1499.118785] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1499.123113] ? alloc_pages_current+0xef/0x1e0 [ 1499.127635] kvm_vcpu_init+0x26d/0x360 [ 1499.127648] vmx_create_vcpu+0xf3/0x2900 [ 1499.127668] ? __mutex_unlock_slowpath+0x75/0x780 [ 1499.140430] ? futex_wake+0x11c/0x3d0 [ 1499.144242] ? handle_rdmsr+0x6b0/0x6b0 [ 1499.145031] Node 0 [ 1499.148227] kvm_vm_ioctl+0x49c/0x1430 [ 1499.148239] ? __lock_acquire+0x5f7/0x4620 [ 1499.148250] ? kvm_vcpu_release+0xa0/0xa0 [ 1499.162870] ? trace_hardirqs_on+0x10/0x10 [ 1499.167124] ? trace_hardirqs_on+0x10/0x10 [ 1499.171375] ? save_trace+0x290/0x290 [ 1499.175312] ? __might_fault+0x104/0x1b0 [ 1499.176250] DMA32 free:34488kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:68kB inactive_file:0kB unevictable:0kB writepending:0kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:828kB local_pcp:80kB free_cma:0kB [ 1499.179398] ? kvm_vcpu_release+0xa0/0xa0 [ 1499.179412] do_vfs_ioctl+0x75a/0xfe0 [ 1499.179424] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1499.179436] ? ioctl_preallocate+0x1a0/0x1a0 [ 1499.224815] ? security_file_ioctl+0x76/0xb0 [ 1499.229236] ? security_file_ioctl+0x83/0xb0 [ 1499.233661] SyS_ioctl+0x7f/0xb0 [ 1499.237040] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1499.241032] do_syscall_64+0x1d5/0x640 [ 1499.244946] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1499.250134] RIP: 0033:0x45c849 [ 1499.253320] RSP: 002b:00007f4cd9aa7c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1499.261033] RAX: ffffffffffffffda RBX: 00007f4cd9aa86d4 RCX: 000000000045c849 [ 1499.268317] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1499.275590] RBP: 000000000076bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 1499.282863] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1499.290135] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bfac [ 1499.344251] lowmem_reserve[]: 0 0 0 0 0 [ 1499.386732] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1499.543818] lowmem_reserve[]: 0 0 0 0 0 [ 1499.557617] Node 1 Normal free:2149540kB min:53612kB low:67012kB high:80412kB active_anon:1217108kB inactive_anon:12kB active_file:28892kB inactive_file:24840kB unevictable:0kB writepending:168kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12384kB pagetables:28292kB bounce:0kB free_pcp:1224kB local_pcp:568kB free_cma:0kB [ 1499.672759] warn_alloc_show_mem: 3 callbacks suppressed [ 1499.672763] Mem-Info: [ 1499.692098] active_anon:797017 inactive_anon:199 isolated_anon:0 [ 1499.692098] active_file:7238 inactive_file:6212 isolated_file:0 [ 1499.692098] unevictable:0 dirty:29 writeback:14 unstable:0 [ 1499.692098] slab_reclaimable:12642 slab_unreclaimable:132704 [ 1499.692098] mapped:59096 shmem:535 pagetables:16252 bounce:0 [ 1499.692098] free:548159 free_pcp:466 free_cma:0 [ 1499.737325] lowmem_reserve[]: 0 0 0 0 0 [ 1499.746493] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1499.774876] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:60kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208964kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1499.799575] Node 0 DMA32: 488*4kB (UME) 1452*8kB (UMEH) 779*16kB (UMEH) 246*32kB (UMEH) 9*64kB (MEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34480kB [ 1499.836594] Node 1 active_anon:1216908kB inactive_anon:12kB active_file:28892kB inactive_file:24840kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27420kB dirty:112kB writeback:56kB shmem:936kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1499.863169] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1499.894404] Node 1 Normal: 255*4kB (UME) 273*8kB (UME) 41*16kB (UME) 160*32kB (UE) 55*64kB (UME) 8*128kB (U) 7*256kB (UE) 4*512kB (UE) 4*1024kB (UE) 6*2048kB (UME) 516*4096kB (UM) = 2147284kB [ 1499.911362] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1499.946492] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1499.985477] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1499.987605] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1499.997467] Node 0 DMA32 free:34456kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:60kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:772kB local_pcp:692kB free_cma:0kB [ 1500.017371] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1500.079870] lowmem_reserve[]: 0 0 0 0 0 [ 1500.093251] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1500.122105] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1500.150529] 13988 total pagecache pages [ 1500.155695] lowmem_reserve[]: 0 0 0 0 0 [ 1500.167591] Node 1 Normal free:2147536kB min:53612kB low:67012kB high:80412kB active_anon:1216868kB inactive_anon:16kB active_file:28892kB inactive_file:24852kB unevictable:0kB writepending:184kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12352kB pagetables:28156kB bounce:0kB free_pcp:924kB local_pcp:568kB free_cma:0kB [ 1500.175749] 0 pages in swap cache [ 1500.243356] lowmem_reserve[]: 0 0 0 0 0 [ 1500.254446] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1500.262904] Swap cache stats: add 0, delete 0, find 0/0 [ 1500.288763] Node 0 DMA32: 488*4kB (UME) 1452*8kB (UMEH) 779*16kB (UMEH) 246*32kB (UMEH) 9*64kB (MEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34480kB [ 1500.306088] Free swap = 0kB [ 1500.313126] Total swap = 0kB [ 1500.320824] 1965979 pages RAM [ 1500.327745] 0 pages HighMem/MovableOnly [ 1500.341751] 339049 pages reserved [ 1500.346617] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1500.361442] 0 pages cma reserved [ 1500.378353] Node 1 Normal: 221*4kB (UME) 152*8kB (UME) 26*16kB (UME) 163*32kB (UE) 55*64kB (UME) 14*128kB (U) 7*256kB (UE) 4*512kB (UE) 4*1024kB (UE) 6*2048kB (UME) 516*4096kB (UM) = 2146804kB [ 1500.431818] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1500.461300] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1500.490383] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1500.499262] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1500.539476] 13988 total pagecache pages [ 1500.543592] 0 pages in swap cache [ 1500.547047] Swap cache stats: add 0, delete 0, find 0/0 [ 1500.579522] Free swap = 0kB [ 1500.582655] Total swap = 0kB [ 1500.585671] 1965979 pages RAM [ 1500.588775] 0 pages HighMem/MovableOnly [ 1500.614560] 339049 pages reserved [ 1500.618157] 0 pages cma reserved 07:19:40 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) r3 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0x0) r4 = add_key$keyring(&(0x7f0000000280)='keyring\x00', &(0x7f00000002c0)={'syz', 0x2}, 0x0, 0x0, r3) r5 = add_key$keyring(&(0x7f0000000200)='keyring\x00', &(0x7f0000000340)={'syz', 0x0}, 0x0, 0x0, r4) r6 = add_key$keyring(&(0x7f00000013c0)='keyring\x00', &(0x7f0000001400)={'syz', 0x1}, 0x0, 0x0, r5) r7 = add_key$keyring(&(0x7f0000000000)='keyring\x00', &(0x7f0000000140)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffd) keyctl$link(0x8, r6, r7) keyctl$negate(0xd, 0x0, 0xef, r7) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r8 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r8, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r10 = dup(r9) ioctl$PERF_EVENT_IOC_ENABLE(r10, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:19:40 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$TIOCGLCKTRMIOS(r1, 0x5456, &(0x7f0000000440)={0x247, 0x400, 0xba22, 0xffffffff, 0x1, "42363517b4e4d17f1220297f946091d5d23990"}) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = syz_open_dev$audion(&(0x7f0000000040)='/dev/audio#\x00', 0x7fffffff, 0x220280) recvfrom$l2tp6(r3, &(0x7f00000001c0)=""/124, 0x7c, 0x40000001, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, 0x20) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(r5, &(0x7f0000000400)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000003c0)={&(0x7f0000000240)={0x164, 0x3, 0x1, 0x301, 0x0, 0x0, {0x1, 0x0, 0x1}, [@CTA_MARK_MASK={0x8, 0x15, 0x1, 0x0, 0x3}, @CTA_PROTOINFO={0x48, 0x4, 0x0, 0x1, @CTA_PROTOINFO_SCTP={0x44, 0x3, 0x0, 0x1, [@CTA_PROTOINFO_SCTP_VTAG_REPLY={0x8, 0x3, 0x1, 0x0, 0x5}, @CTA_PROTOINFO_SCTP_VTAG_ORIGINAL={0x8, 0x2, 0x1, 0x0, 0x7f}, @CTA_PROTOINFO_SCTP_VTAG_ORIGINAL={0x8, 0x2, 0x1, 0x0, 0x1}, @CTA_PROTOINFO_SCTP_STATE={0x5, 0x1, 0x1f}, @CTA_PROTOINFO_SCTP_VTAG_ORIGINAL={0x8, 0x2, 0x1, 0x0, 0x2}, @CTA_PROTOINFO_SCTP_VTAG_ORIGINAL={0x8, 0x2, 0x1, 0x0, 0xc}, @CTA_PROTOINFO_SCTP_STATE={0x5, 0x1, 0x20}, @CTA_PROTOINFO_SCTP_VTAG_ORIGINAL={0x8, 0x2, 0x1, 0x0, 0x401}]}}, @CTA_PROTOINFO={0x38, 0x4, 0x0, 0x1, @CTA_PROTOINFO_TCP={0x34, 0x1, 0x0, 0x1, [@CTA_PROTOINFO_TCP_FLAGS_ORIGINAL={0x6, 0x4, {0x20, 0x9}}, @CTA_PROTOINFO_TCP_STATE={0x5, 0x1, 0x80}, @CTA_PROTOINFO_TCP_STATE={0x5, 0x1, 0x3}, @CTA_PROTOINFO_TCP_WSCALE_REPLY={0x5, 0x3, 0x1}, @CTA_PROTOINFO_TCP_FLAGS_ORIGINAL={0x6, 0x4, {0x6}}, @CTA_PROTOINFO_TCP_STATE={0x5, 0x1, 0x80}]}}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x3}, @CTA_NAT_DST={0x70, 0xd, 0x0, 0x1, [@CTA_NAT_V4_MINIP={0x8, 0x1, @multicast2}, @CTA_NAT_V4_MINIP={0x8, 0x1, @broadcast}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @loopback}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @local}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}, @CTA_NAT_PROTO={0x44, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e21}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e24}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e20}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e20}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e24}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e24}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}]}]}, @CTA_SEQ_ADJ_REPLY={0x2c, 0x10, 0x0, 0x1, [@CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x45}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x3ff}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x7}, @CTA_SEQADJ_OFFSET_AFTER={0x8, 0x3, 0x1, 0x0, 0x5}, @CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x3}]}, @CTA_NAT_DST={0xc, 0xd, 0x0, 0x1, [@CTA_NAT_V4_MINIP={0x8, 0x1, @dev={0xac, 0x14, 0x14, 0x27}}]}, @CTA_ID={0x8, 0xc, 0x1, 0x0, 0x1}, @CTA_STATUS={0x8, 0x3, 0x1, 0x0, 0x2000}, @CTA_MARK={0x8, 0x8, 0x1, 0x0, 0x6}]}, 0x164}, 0x1, 0x0, 0x0, 0x80}, 0x10) r6 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) 07:19:40 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) ioctl(r0, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='memory.events\x00', 0x26e1, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_subtree(r2, &(0x7f0000000000)=ANY=[], 0x32600) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='memory.events\x00', 0x7a05, 0x1700) writev(r1, &(0x7f0000000480)=[{&(0x7f0000000140)="02", 0x1}], 0x1) writev(r2, &(0x7f00000001c0)=[{&(0x7f0000000240)="b4", 0x1}], 0x1) write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x0) 07:19:40 executing program 3: r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="5c0000000206011000000000000000000000000005000400000000000900020073797a30000000000500010006000000050005000a0000000c000780080006400000000015000300686173683a69702c706f72742c6e657400000000ec03b44fc8a7bb89b9a0e1440bf2454a9f75a996f9dc5ebd90908697187a3dbb84a540e17ae567f6bbe1b4baf83ceaae7d3c9f936c1c6e7c74517b543ab51354b52f7757f07dc4c4078057333ca9fb7285"], 0x5c}}, 0x0) 07:19:40 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000080)=ANY=[@ANYBLOB="7256814487be2235b9402de4d4a6b88afadbbf1d905973c0e43f18757f19e3154e3b77753510ee9b00"/53], 0x1) 07:19:40 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) timerfd_settime(r4, 0x0, &(0x7f0000000080)={{0x77359400}, {0x0, 0x989680}}, &(0x7f00000000c0)) r5 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r5, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:19:40 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) setsockopt$inet_icmp_ICMP_FILTER(r1, 0x1, 0x1, &(0x7f0000000040), 0x4) 07:19:40 executing program 3: socket$inet_tcp(0x2, 0x1, 0x0) r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000ac0)=@raw={'raw\x00', 0x3c1, 0x3, 0x2f8, 0x0, 0x0, 0x0, 0x130, 0x130, 0x228, 0x228, 0x228, 0x228, 0x228, 0x3, 0x0, {[{{@uncond=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6], 0x0, 0xf8, 0x130, 0x0, {}, [@common=@unspec=@connlabel={{0x28, 'connlabel\x00'}}, @inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @common=@inet=@SET3={0x38, 'SET\x00'}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @common=@unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00'}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x1e0) ioctl$sock_SIOCDELDLCI(r0, 0x8981, &(0x7f00000000c0)={'gretap0\x00'}) r1 = socket$inet6_sctp(0xa, 0x5, 0x84) shutdown(r1, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000300)=[@in]}, &(0x7f0000000180)=0x10) r2 = socket$inet(0x2, 0x80001, 0x84) getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={0x0}, &(0x7f0000000040)=0x8) getsockopt$inet_sctp6_SCTP_RTOINFO(r1, 0x84, 0x0, &(0x7f0000000340)={r3}, &(0x7f0000000140)=0x10) getsockopt$inet_sctp_SCTP_RTOINFO(0xffffffffffffffff, 0x84, 0x0, &(0x7f00000000c0)={r3, 0xfffffffe, 0x1, 0x6}, &(0x7f0000000100)=0x10) getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000080)={r3, @in6={{0xa, 0x4e24, 0x81, @mcast1}}, 0x749c, 0x8, 0x8, 0x737e, 0x69, 0x8, 0x8}, &(0x7f0000000000)=0x9c) r4 = socket$netlink(0x10, 0x3, 0x0) writev(r4, &(0x7f00000001c0)=[{&(0x7f0000000040)="390000001300034700bb65e1c3e4ffff06000000010000004500000025000000190004000400000007fd17e5ffdd0606040000000000000000", 0x39}], 0x1) 07:19:40 executing program 5: pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r2, 0x6, 0x10000000013, &(0x7f0000000180)=0x1, 0x233) setsockopt$SO_BINDTODEVICE(r2, 0x1, 0x19, &(0x7f0000000000)='vcan0\x00', 0x10) connect$inet(r2, &(0x7f0000000400)={0x2, 0x0, @loopback}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r2, 0x6, 0x1d, &(0x7f0000000100)={0x0, 0xdf5, 0x21f8}, 0x14) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0xff01) splice(r0, 0x0, r2, 0x0, 0x10003, 0x0) 07:19:40 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$VIDIOC_PREPARE_BUF(0xffffffffffffffff, 0xc058565d, &(0x7f0000000140)={0x9755, 0xa, 0x4, 0x10000, 0x5, {0x0, 0x2710}, {0x2, 0x1, 0x0, 0x4, 0x8, 0x4, "2b6cdd81"}, 0x5, 0x3, @userptr=0x9, 0x5, 0x0, r0}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) pivot_root(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00') r5 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r5, r4) r6 = syz_open_dev$audion(&(0x7f00000001c0)='/dev/audio#\x00', 0x1, 0x210100) ioctl$DRM_IOCTL_ADD_MAP(r6, 0xc0286415, &(0x7f0000000200)={&(0x7f0000ffc000/0x3000)=nil, 0x7ff, 0x3, 0x4a, &(0x7f0000ffb000/0x2000)=nil, 0xffffffff}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000240)=ANY=[@ANYBLOB="00151528f525ebc76ac168680c81dc71bae82639b184a0991f6a3534f7db0d731d1d38e0ee05a0c2e6462ca04b353141f669ebfc4cb83d992b554d6c931777456cdaf0ae658ab6fec0d5ea480e09781604bc220d4645436f6ebb9a9d6493c928909d9a4cf7efd00e7e0a408f7f944b5a561a244c41ba2821811bb101e9b2d1a007c375b7ed704faad197a2979560bffb2a7dc1f43ed426c4d0a9f906040742992ddf62bc83"], 0x1) 07:19:40 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KVM_CREATE_IRQCHIP(r4, 0xae60) r5 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/autofs\x00', 0x321002, 0x0) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r6, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r6, 0xae80, 0x0) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r7, 0x0, r7) socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) syz_open_dev$vcsa(&(0x7f00000000c0)='/dev/vcsa#\x00', 0x4, 0x505900) ioctl$KVM_TPR_ACCESS_REPORTING(r6, 0x4008ae89, &(0x7f0000000080)={0x1053, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000140)=ANY=[@ANYBLOB="72a9e4b868c7ff9a7836d30c5a84f878264a6b224f0a0d16321487fde5be570c7eb821ff437b7c4902613efcb497c8a363031dff38a8e5cb04000000000000008699a7cb68ff86ada8dc9f0283b287b777eadac7a91a87a1a16bd6c44e63"], 0x1) 07:19:41 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) newfstatat(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) setreuid(0x0, r2) ioctl$TUNSETOWNER(r1, 0x400454cc, r2) [ 1500.973395] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready [ 1500.994735] cannot load conntrack support for proto=10 [ 1501.112624] cannot load conntrack support for proto=10 [ 1501.216541] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1501.301148] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1501.313524] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1501.324640] CPU: 1 PID: 24751 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1501.332544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1501.341902] Call Trace: [ 1501.344496] dump_stack+0x13e/0x194 [ 1501.345267] syz-executor.4 cpuset= [ 1501.348130] warn_alloc.cold+0x96/0x1af [ 1501.348143] ? zone_watermark_ok_safe+0x280/0x280 [ 1501.358966] syz4 [ 1501.360480] ? wait_for_completion+0x390/0x390 [ 1501.363447] mems_allowed=0-1 [ 1501.367029] __alloc_pages_slowpath+0x2114/0x26c0 [ 1501.367052] ? warn_alloc+0xf0/0xf0 [ 1501.378583] ? find_held_lock+0x2d/0x110 [ 1501.382651] ? fs_reclaim_acquire+0x10/0x10 [ 1501.386983] __alloc_pages_nodemask+0x5d3/0x700 [ 1501.391661] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1501.397456] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1501.402294] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1501.407305] alloc_pages_current+0xe7/0x1e0 [ 1501.411623] kvm_mmu_create+0xd1/0x1c0 [ 1501.415515] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1501.419859] ? alloc_pages_current+0xef/0x1e0 [ 1501.424368] kvm_vcpu_init+0x26d/0x360 [ 1501.428259] vmx_create_vcpu+0xf3/0x2900 [ 1501.432335] ? __mutex_unlock_slowpath+0x75/0x780 [ 1501.437188] ? futex_wake+0x11c/0x3d0 [ 1501.440991] ? handle_rdmsr+0x6b0/0x6b0 [ 1501.444989] kvm_vm_ioctl+0x49c/0x1430 [ 1501.448906] ? __lock_acquire+0x5f7/0x4620 [ 1501.453138] ? kvm_vcpu_release+0xa0/0xa0 [ 1501.457289] ? trace_hardirqs_on+0x10/0x10 [ 1501.461531] ? trace_hardirqs_on+0x10/0x10 [ 1501.465768] ? save_trace+0x290/0x290 [ 1501.469563] ? __might_fault+0x104/0x1b0 [ 1501.473624] ? kvm_vcpu_release+0xa0/0xa0 [ 1501.477774] do_vfs_ioctl+0x75a/0xfe0 [ 1501.481569] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1501.486320] ? ioctl_preallocate+0x1a0/0x1a0 [ 1501.490746] ? security_file_ioctl+0x76/0xb0 [ 1501.495154] ? security_file_ioctl+0x83/0xb0 [ 1501.499565] SyS_ioctl+0x7f/0xb0 [ 1501.502921] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1501.506897] do_syscall_64+0x1d5/0x640 [ 1501.510782] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1501.515963] RIP: 0033:0x45c849 [ 1501.519145] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1501.526864] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1501.534568] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1501.541836] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1501.549101] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1501.556361] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1501.563641] CPU: 0 PID: 24776 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1501.571541] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1501.580902] Call Trace: [ 1501.583504] dump_stack+0x13e/0x194 [ 1501.587160] warn_alloc.cold+0x96/0x1af [ 1501.591142] ? zone_watermark_ok_safe+0x280/0x280 [ 1501.596005] ? wait_for_completion+0x390/0x390 [ 1501.600598] __alloc_pages_slowpath+0x2114/0x26c0 [ 1501.605580] ? warn_alloc+0xf0/0xf0 [ 1501.609209] ? find_held_lock+0x2d/0x110 [ 1501.613275] ? fs_reclaim_acquire+0x10/0x10 [ 1501.617610] __alloc_pages_nodemask+0x5d3/0x700 [ 1501.622285] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1501.627308] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1501.632154] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1501.637191] alloc_pages_current+0xe7/0x1e0 [ 1501.641527] kvm_mmu_create+0xd1/0x1c0 [ 1501.645425] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1501.649784] ? alloc_pages_current+0xef/0x1e0 [ 1501.654283] kvm_vcpu_init+0x26d/0x360 [ 1501.658182] vmx_create_vcpu+0xf3/0x2900 [ 1501.662381] ? __mutex_unlock_slowpath+0x75/0x780 [ 1501.667233] ? futex_wake+0x11c/0x3d0 [ 1501.671103] ? handle_rdmsr+0x6b0/0x6b0 [ 1501.675099] kvm_vm_ioctl+0x49c/0x1430 [ 1501.679031] ? __lock_acquire+0x5f7/0x4620 [ 1501.683274] ? kvm_vcpu_release+0xa0/0xa0 [ 1501.687451] ? trace_hardirqs_on+0x10/0x10 [ 1501.691703] ? trace_hardirqs_on+0x10/0x10 [ 1501.695954] ? save_trace+0x290/0x290 [ 1501.699761] ? __might_fault+0x104/0x1b0 [ 1501.703833] ? kvm_vcpu_release+0xa0/0xa0 [ 1501.707997] do_vfs_ioctl+0x75a/0xfe0 [ 1501.711803] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1501.716562] ? ioctl_preallocate+0x1a0/0x1a0 [ 1501.721018] ? security_file_ioctl+0x76/0xb0 [ 1501.725429] ? security_file_ioctl+0x83/0xb0 [ 1501.729844] SyS_ioctl+0x7f/0xb0 [ 1501.733213] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1501.737191] do_syscall_64+0x1d5/0x640 [ 1501.741089] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1501.746278] RIP: 0033:0x45c849 [ 1501.749468] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1501.757264] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1501.764530] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1501.771791] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1501.779050] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1501.786316] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1501.857379] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1501.894491] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1501.907881] CPU: 0 PID: 24760 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1501.915809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1501.925169] Call Trace: [ 1501.927770] dump_stack+0x13e/0x194 [ 1501.931410] warn_alloc.cold+0x96/0x1af [ 1501.935392] ? zone_watermark_ok_safe+0x280/0x280 [ 1501.940249] ? wait_for_completion+0x390/0x390 [ 1501.944841] __alloc_pages_slowpath+0x2114/0x26c0 [ 1501.949704] ? warn_alloc+0xf0/0xf0 [ 1501.953346] ? find_held_lock+0x2d/0x110 [ 1501.957429] ? fs_reclaim_acquire+0x10/0x10 [ 1501.961780] __alloc_pages_nodemask+0x5d3/0x700 [ 1501.966457] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1501.971486] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1501.976336] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1501.981370] alloc_pages_current+0xe7/0x1e0 [ 1501.985702] kvm_mmu_create+0xd1/0x1c0 [ 1501.989603] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1501.993934] ? alloc_pages_current+0xef/0x1e0 [ 1501.998443] kvm_vcpu_init+0x26d/0x360 [ 1502.002343] vmx_create_vcpu+0xf3/0x2900 [ 1502.011638] ? __mutex_unlock_slowpath+0x75/0x780 [ 1502.016753] ? futex_wake+0x11c/0x3d0 [ 1502.020568] ? handle_rdmsr+0x6b0/0x6b0 [ 1502.024552] kvm_vm_ioctl+0x49c/0x1430 [ 1502.028449] ? __lock_acquire+0x5f7/0x4620 [ 1502.032693] ? kvm_vcpu_release+0xa0/0xa0 [ 1502.036856] ? trace_hardirqs_on+0x10/0x10 [ 1502.041102] ? trace_hardirqs_on+0x10/0x10 [ 1502.045343] ? save_trace+0x290/0x290 [ 1502.049145] ? __might_fault+0x104/0x1b0 [ 1502.053218] ? kvm_vcpu_release+0xa0/0xa0 [ 1502.057372] do_vfs_ioctl+0x75a/0xfe0 [ 1502.061181] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1502.065947] ? ioctl_preallocate+0x1a0/0x1a0 [ 1502.070368] ? security_file_ioctl+0x76/0xb0 [ 1502.074785] ? security_file_ioctl+0x83/0xb0 [ 1502.079223] SyS_ioctl+0x7f/0xb0 [ 1502.082583] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1502.086552] do_syscall_64+0x1d5/0x640 [ 1502.090433] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1502.095606] RIP: 0033:0x45c849 [ 1502.098793] RSP: 002b:00007f4cd9aa7c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1502.106482] RAX: ffffffffffffffda RBX: 00007f4cd9aa86d4 RCX: 000000000045c849 [ 1502.113733] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1502.121005] RBP: 000000000076bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 1502.128270] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1502.135545] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bfac [ 1502.274627] Mem-Info: [ 1502.284072] active_anon:796972 inactive_anon:200 isolated_anon:0 [ 1502.284072] active_file:7235 inactive_file:6230 isolated_file:1 [ 1502.284072] unevictable:0 dirty:4 writeback:0 unstable:0 [ 1502.284072] slab_reclaimable:12583 slab_unreclaimable:132225 [ 1502.284072] mapped:59067 shmem:536 pagetables:16249 bounce:0 [ 1502.284072] free:548797 free_pcp:309 free_cma:0 [ 1502.469892] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:40kB inactive_file:12kB unevictable:0kB isolated(anon):0kB isolated(file):4kB mapped:208948kB dirty:0kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1502.598561] Node 1 active_anon:1216928kB inactive_anon:16kB active_file:28900kB inactive_file:24908kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27520kB dirty:16kB writeback:0kB shmem:940kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1502.696154] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1502.780224] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1502.785309] Node 0 DMA32 free:35316kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:40kB inactive_file:12kB unevictable:0kB writepending:0kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:120kB local_pcp:76kB free_cma:0kB [ 1502.870121] lowmem_reserve[]: 0 0 0 0 0 [ 1502.874164] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1502.940077] lowmem_reserve[]: 0 0 0 0 0 [ 1502.944118] Node 1 Normal free:2150528kB min:53612kB low:67012kB high:80412kB active_anon:1216828kB inactive_anon:16kB active_file:28900kB inactive_file:24908kB unevictable:0kB writepending:16kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12256kB pagetables:27984kB bounce:0kB free_pcp:1024kB local_pcp:596kB free_cma:0kB [ 1503.050139] lowmem_reserve[]: 0 0 0 0 0 [ 1503.054176] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1503.100085] Node 0 DMA32: 501*4kB (UME) 1453*8kB (UMEH) 781*16kB (UMEH) 246*32kB (UMEH) 9*64kB (MEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34572kB [ 1503.153842] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1503.194380] Node 1 Normal: 61*4kB (UME) 340*8kB (UME) 245*16kB (UME) 217*32kB (UME) 56*64kB (UME) 0*128kB 6*256kB (UE) 4*512kB (UE) 4*1024kB (UE) 6*2048kB (UME) 516*4096kB (UM) = 2150916kB [ 1503.253872] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1503.284218] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1503.316599] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1503.340574] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1503.361491] 14007 total pagecache pages [ 1503.369443] 0 pages in swap cache [ 1503.378417] Swap cache stats: add 0, delete 0, find 0/0 [ 1503.390464] Free swap = 0kB [ 1503.397283] Total swap = 0kB [ 1503.410875] 1965979 pages RAM [ 1503.418967] 0 pages HighMem/MovableOnly [ 1503.428304] 339049 pages reserved [ 1503.437741] 0 pages cma reserved 07:19:43 executing program 1: r0 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r0, 0x8912, 0x400200) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x10) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = dup3(r1, r2, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r3, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r4, r3) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) r8 = fcntl$dupfd(r7, 0x0, r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) ioctl$KVM_GET_XSAVE(r8, 0x9000aea4, &(0x7f0000000980)) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000140)=ANY=[@ANYBLOB="00a82fc76d336a501891fbf66b3b1745dac2c5c8334ab2a67cb8255ad5115023fc4daaf78ff06f0217ca5080642d6869efbc57e03164f858fbe340a928283ba0b9e0a5b8733e2942a03c28b6767f17084ffbb9050c52c5fae3ddc7eadf7cefafb2e5cc6e1c5397723dcaf6161b976a4af5006682eb1416f4854e616a7eed7f4aa5260800000000000000ce6120bd549897a6a6e17c23789990cdd2afc5e90e34f0f040d23089e1437acc09bfddf375e056b978f1db44c29f795744dfdcd0469dd350e06a32e3df6f50f4e6b93e3aecf198312db596652fd87500b3c566dc38ffd73558aa4aded7f08fce33ab511fc53a16fc4a8183cdcac12353bb5828e47c3cf334825ce89587c908cdadb72a294b73ac1405d65484fa97277f88d4b560e45408862b5e"], 0x1) 07:19:43 executing program 3: socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'macvlan1\x00'}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'syz_tun\x00', 0x0}) r4 = socket$nl_route(0x10, 0x3, 0x0) r5 = socket(0x10, 0x4, 0x0) sendmsg$NBD_CMD_DISCONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x3d2}}, 0x0) getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="3400000010000104000000000000000080000000837af4", @ANYRES32=r6, @ANYBLOB="0000000c0001006272156df86aca60f9f169c46caa4725c5d008fb22d5484f519ce6f2d19626646796000000025e7ecfde5db0825900"], 0x34}}, 0x0) sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000002700)=ANY=[@ANYBLOB="280000001000010400"/20, @ANYRES32=r3, @ANYBLOB="000000000400000008000a00", @ANYRES32=r6, @ANYBLOB], 0x28}}, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000300)={'syz_tun\x00'}) setsockopt$inet6_tcp_TCP_REPAIR(r5, 0x6, 0x13, &(0x7f0000000040)=0x1, 0x4) 07:19:43 executing program 5: pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet_udp(0x2, 0x2, 0x0) close(r2) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x88002, 0x0) read$alg(0xffffffffffffffff, &(0x7f0000000140)=""/105, 0x69) ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000100)={'syzkaller1\x00', 0xa732}) r4 = socket$netlink(0x10, 0x3, 0x15) write$binfmt_script(0xffffffffffffffff, &(0x7f0000000040)=ANY=[], 0x2343a726) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x28011, 0xffffffffffffffff, 0x0) r5 = socket$netlink(0x10, 0x3, 0x0) ioctl(r5, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") ioctl$sock_inet_SIOCSIFADDR(r4, 0x8914, &(0x7f0000000000)={'syzkaller1\x00', {0x7, 0x0, @empty}}) write$tun(r3, &(0x7f0000000240)={@val, @void, @eth={@random="9f96f500", @local, @void, {@ipv4={0x800, @generic={{0x5, 0x4, 0x0, 0x0, 0x124, 0x0, 0x0, 0x0, 0x0, 0x0, @dev={0xac, 0x14, 0x14, 0xc}, @dev}, "8c14d9cb066275091abea0f38ada7717c3ee3b79322ebe46335af7eeac3d2eaf4e55084af6a69f97804509048e5230349b05b258135778e923dcc9642be2cfb2ddbb9de69f951d9cf184dad95b38cd0bc6294181a9f76696fbd306b6a9509dfe3b67ad82389faa1067dd4b4b34ea0bf45823c4f905252c0f1fa1f494084692688b449046e967ee0728d12bdad0da7ead6cd967e5da2106cb7ba5ace3bf937bfa4a2d79852cb0933a7a0dcccebb2e1c557fbae8083773381347a2287f72b0c7b9ff9a1133b075ca4472f4589af64661303852a4e4df8021cc000000caa6478e399a08e1e74746d01811c594e728e56feaffd3f6e5ef63a328e3ea94efbcfb9fcc1ebe2a9bde3f1c94ff318671ac7dc325"}}}}}, 0x136) write$binfmt_misc(r1, &(0x7f0000000140)=ANY=[], 0x1000000c8) splice(r0, 0x0, r2, 0x0, 0x10005, 0x0) 07:19:43 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TEMPO(r2, 0xc02c5341, &(0x7f0000000040)) r3 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) write$FUSE_OPEN(r5, &(0x7f0000000100)={0x20, 0x0, 0x7, {0x0, 0x12}}, 0x20) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="111bd5c98f13000000000000000000008000", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x12000d, 0x0) socket$can_raw(0x1d, 0x3, 0x1) 07:19:43 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) fstat(0xffffffffffffffff, &(0x7f0000001b80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r4 = socket$inet_udplite(0x2, 0x2, 0x88) fstat(r4, &(0x7f0000001b80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lsetxattr$system_posix_acl(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='system.posix_acl_access\x00', &(0x7f0000000200)=ANY=[@ANYBLOB="020000000100000000005600040003000000000008000100", @ANYRES32, @ANYBLOB='\b\x00\a\x00', @ANYRES32=r3, @ANYBLOB='\b\x00\a\x00', @ANYRES32=r5, @ANYBLOB="1000070000000000200000000000000d"], 0x3c, 0x0) r6 = getgid() r7 = socket$inet_udplite(0x2, 0x2, 0x88) fstat(r7, &(0x7f0000001b80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) r9 = socket$inet_udplite(0x2, 0x2, 0x88) fstat(r9, &(0x7f0000001b80)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) lsetxattr$system_posix_acl(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='system.posix_acl_access\x00', &(0x7f0000000200)=ANY=[@ANYBLOB="020000000100000000005600040003000000000008000100", @ANYRES32=r6, @ANYBLOB='\b\x00\a\x00', @ANYRES32=r8, @ANYBLOB='\b\x00\a\x00', @ANYRES32=r10, @ANYBLOB="1000070000000000200000000000000d"], 0x3c, 0x0) getgroups(0x6, &(0x7f0000000200)=[0x0, r3, 0x0, r10, 0xffffffffffffffff, 0xffffffffffffffff]) chown(&(0x7f0000000080)='./file0\x00', 0x0, r11) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:19:43 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(0xffffffffffffffff, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000000)={0x3, 0x0, [0x4d0]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) r7 = fcntl$dupfd(r6, 0x0, r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) getsockopt$inet_sctp6_SCTP_AUTO_ASCONF(r7, 0x84, 0x1e, &(0x7f0000000080), &(0x7f00000000c0)=0x4) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) stat(&(0x7f0000000200)='./file0\x00', &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) ioctl$TUNSETGROUP(0xffffffffffffffff, 0x400454ce, r8) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f00000001c0)=ANY=[@ANYBLOB="f3dc19d21d95a89fe5067073e4847824c41d8a"], 0x1) [ 1503.549382] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.3'. 07:19:43 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) setsockopt$CAN_RAW_FILTER(r1, 0x65, 0x1, &(0x7f0000000040)=[{{0x2, 0x1, 0x0, 0x1}, {0x2, 0x1, 0x1}}], 0x8) openat$hwrng(0xffffffffffffff9c, &(0x7f0000000080)='/dev/hwrng\x00', 0x46080, 0x0) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) [ 1503.629643] audit: type=1400 audit(1585639183.664:523): avc: denied { ioctl } for pid=24827 comm="syz-executor.5" path="socket:[230454]" dev="sockfs" ino=230454 ioctlcmd=0x8914 scontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tcontext=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 tclass=netlink_crypto_socket permissive=1 [ 1503.631607] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1503.763998] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1503.773596] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1503.822375] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1503.852718] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1503.855366] CPU: 1 PID: 24835 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1503.866021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1503.875375] Call Trace: [ 1503.877960] dump_stack+0x13e/0x194 [ 1503.881589] warn_alloc.cold+0x96/0x1af [ 1503.885565] ? zone_watermark_ok_safe+0x280/0x280 [ 1503.890407] ? wait_for_completion+0x390/0x390 [ 1503.895028] __alloc_pages_slowpath+0x2114/0x26c0 [ 1503.899896] ? warn_alloc+0xf0/0xf0 [ 1503.903547] ? find_held_lock+0x2d/0x110 [ 1503.907613] ? fs_reclaim_acquire+0x10/0x10 [ 1503.911948] __alloc_pages_nodemask+0x5d3/0x700 [ 1503.916621] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1503.921642] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1503.926501] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1503.931530] alloc_pages_current+0xe7/0x1e0 [ 1503.935862] kvm_mmu_create+0xd1/0x1c0 [ 1503.939747] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1503.944057] ? alloc_pages_current+0xef/0x1e0 [ 1503.948548] kvm_vcpu_init+0x26d/0x360 [ 1503.952432] vmx_create_vcpu+0xf3/0x2900 [ 1503.956527] ? __mutex_unlock_slowpath+0x75/0x780 [ 1503.961370] ? futex_wake+0x11c/0x3d0 [ 1503.965165] ? handle_rdmsr+0x6b0/0x6b0 [ 1503.969140] kvm_vm_ioctl+0x49c/0x1430 [ 1503.973028] ? __lock_acquire+0x5f7/0x4620 [ 1503.977377] ? kvm_vcpu_release+0xa0/0xa0 [ 1503.981529] ? trace_hardirqs_on+0x10/0x10 [ 1503.985785] ? trace_hardirqs_on+0x10/0x10 [ 1503.990025] ? save_trace+0x290/0x290 [ 1503.993825] ? __might_fault+0x104/0x1b0 [ 1503.997895] ? kvm_vcpu_release+0xa0/0xa0 [ 1504.002044] do_vfs_ioctl+0x75a/0xfe0 [ 1504.005856] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1504.010623] ? ioctl_preallocate+0x1a0/0x1a0 [ 1504.015042] ? security_file_ioctl+0x76/0xb0 [ 1504.019456] ? security_file_ioctl+0x83/0xb0 [ 1504.023866] SyS_ioctl+0x7f/0xb0 [ 1504.027228] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1504.031217] do_syscall_64+0x1d5/0x640 [ 1504.035104] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1504.040300] RIP: 0033:0x45c849 [ 1504.043478] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1504.051177] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1504.058446] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1504.065713] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1504.072977] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1504.080243] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1504.088503] CPU: 0 PID: 24833 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1504.096404] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1504.105787] Call Trace: [ 1504.108396] dump_stack+0x13e/0x194 [ 1504.112033] warn_alloc.cold+0x96/0x1af [ 1504.116015] ? zone_watermark_ok_safe+0x280/0x280 [ 1504.120876] ? wait_for_completion+0x390/0x390 [ 1504.125468] __alloc_pages_slowpath+0x2114/0x26c0 [ 1504.130325] ? warn_alloc+0xf0/0xf0 [ 1504.133953] ? find_held_lock+0x2d/0x110 [ 1504.138020] ? fs_reclaim_acquire+0x10/0x10 [ 1504.142358] __alloc_pages_nodemask+0x5d3/0x700 [ 1504.147032] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1504.152063] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1504.156911] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1504.161947] alloc_pages_current+0xe7/0x1e0 [ 1504.166276] kvm_mmu_create+0xd1/0x1c0 [ 1504.170170] kvm_arch_vcpu_init+0x28b/0x8b0 07:19:44 executing program 3: r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0) connect$netrom(r0, &(0x7f0000000080)={{0x6, @rose}, [@rose, @rose, @default, @netrom, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose, @rose, @null]}, 0x48) listen(r0, 0x0) unshare(0x40000000) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='pids.current\x00', 0x26e1, 0x0) ioctl$FS_IOC_FSSETXATTR(r1, 0x40086602, &(0x7f0000000140)) write$cgroup_int(r1, &(0x7f0000000080), 0x87f1a7) r2 = socket$netlink(0x10, 0x3, 0x0) ioctl(r2, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") recvmsg(r0, &(0x7f0000000780)={0x0, 0x0, 0x0}, 0x0) [ 1504.174497] ? alloc_pages_current+0xef/0x1e0 [ 1504.179003] kvm_vcpu_init+0x26d/0x360 [ 1504.182905] vmx_create_vcpu+0xf3/0x2900 [ 1504.186978] ? __mutex_unlock_slowpath+0x75/0x780 [ 1504.192605] ? futex_wake+0x11c/0x3d0 [ 1504.196413] ? handle_rdmsr+0x6b0/0x6b0 [ 1504.200403] kvm_vm_ioctl+0x49c/0x1430 [ 1504.204301] ? __lock_acquire+0x5f7/0x4620 [ 1504.208539] ? kvm_vcpu_release+0xa0/0xa0 [ 1504.212703] ? trace_hardirqs_on+0x10/0x10 [ 1504.216951] ? trace_hardirqs_on+0x10/0x10 [ 1504.221194] ? save_trace+0x290/0x290 [ 1504.224998] ? __might_fault+0x104/0x1b0 [ 1504.229068] ? kvm_vcpu_release+0xa0/0xa0 [ 1504.233256] do_vfs_ioctl+0x75a/0xfe0 [ 1504.237059] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1504.241818] ? ioctl_preallocate+0x1a0/0x1a0 [ 1504.246237] ? security_file_ioctl+0x76/0xb0 [ 1504.250646] ? security_file_ioctl+0x83/0xb0 [ 1504.255060] SyS_ioctl+0x7f/0xb0 [ 1504.258426] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1504.262402] do_syscall_64+0x1d5/0x640 [ 1504.266318] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1504.271510] RIP: 0033:0x45c849 [ 1504.274701] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1504.282413] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1504.289688] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1504.296975] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1504.304256] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1504.311531] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1504.338307] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) 07:19:44 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x7) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000040)='./file0\x00', 0x20000003, 0x0, &(0x7f0000000000), 0x0, 0x0) 07:19:44 executing program 5: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0x8, &(0x7f0000000000)=0x8000, 0x4) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c) listen(r0, 0x2) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") syz_emit_ethernet(0x4a, &(0x7f0000000300)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "209200", 0x14, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0xc2}}}}}}}, 0x0) [ 1504.384848] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1504.403923] CPU: 0 PID: 24837 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1504.411851] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1504.421228] Call Trace: [ 1504.423831] dump_stack+0x13e/0x194 [ 1504.427539] warn_alloc.cold+0x96/0x1af [ 1504.431523] ? zone_watermark_ok_safe+0x280/0x280 [ 1504.436389] ? wait_for_completion+0x390/0x390 [ 1504.440990] __alloc_pages_slowpath+0x2114/0x26c0 [ 1504.445881] ? warn_alloc+0xf0/0xf0 [ 1504.449521] ? find_held_lock+0x2d/0x110 [ 1504.453593] ? fs_reclaim_acquire+0x10/0x10 [ 1504.457932] __alloc_pages_nodemask+0x5d3/0x700 [ 1504.462610] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1504.467637] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1504.472490] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1504.477526] alloc_pages_current+0xe7/0x1e0 07:19:44 executing program 5: bpf$MAP_CREATE(0x0, &(0x7f0000000280)={0xf, 0x4, 0x8, 0x3ff, 0x0, 0x1}, 0x40) socket$kcm(0x29, 0x5, 0x0) r0 = socket$kcm(0x2, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0) bpf$MAP_CREATE(0x0, &(0x7f0000000000)={0x5}, 0xfffffffffffffdcb) bpf$MAP_CREATE(0x2, &(0x7f0000003000)={0x3, 0x0, 0x77fffb, 0x0, 0x10020000000, 0x0}, 0x2c) [ 1504.481858] kvm_mmu_create+0xd1/0x1c0 [ 1504.485758] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1504.490090] ? alloc_pages_current+0xef/0x1e0 [ 1504.494596] kvm_vcpu_init+0x26d/0x360 [ 1504.498494] vmx_create_vcpu+0xf3/0x2900 [ 1504.502576] ? __mutex_unlock_slowpath+0x75/0x780 [ 1504.507433] ? futex_wake+0x11c/0x3d0 [ 1504.511248] ? handle_rdmsr+0x6b0/0x6b0 [ 1504.515240] kvm_vm_ioctl+0x49c/0x1430 [ 1504.519142] ? __lock_acquire+0x5f7/0x4620 [ 1504.523387] ? kvm_vcpu_release+0xa0/0xa0 [ 1504.527541] ? trace_hardirqs_on+0x10/0x10 07:19:44 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) r2 = getpid() sched_setattr(r2, &(0x7f00000000c0)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0) syz_open_procfs(r2, &(0x7f0000000040)='net/unix\x00') [ 1504.531789] ? trace_hardirqs_on+0x10/0x10 [ 1504.536032] ? save_trace+0x290/0x290 [ 1504.539832] ? __might_fault+0x104/0x1b0 [ 1504.543904] ? kvm_vcpu_release+0xa0/0xa0 [ 1504.548062] do_vfs_ioctl+0x75a/0xfe0 [ 1504.551870] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1504.556633] ? ioctl_preallocate+0x1a0/0x1a0 [ 1504.561056] ? security_file_ioctl+0x76/0xb0 [ 1504.565473] ? security_file_ioctl+0x83/0xb0 [ 1504.569894] SyS_ioctl+0x7f/0xb0 [ 1504.573267] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1504.577256] do_syscall_64+0x1d5/0x640 [ 1504.581157] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1504.586349] RIP: 0033:0x45c849 [ 1504.589537] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1504.597265] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1504.604538] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1504.611810] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1504.619087] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1504.626362] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1504.802770] warn_alloc_show_mem: 2 callbacks suppressed [ 1504.802774] Mem-Info: [ 1504.832090] active_anon:797050 inactive_anon:200 isolated_anon:0 [ 1504.832090] active_file:7227 inactive_file:6234 isolated_file:12 [ 1504.832090] unevictable:0 dirty:49 writeback:0 unstable:0 [ 1504.832090] slab_reclaimable:12643 slab_unreclaimable:132476 [ 1504.832090] mapped:59076 shmem:537 pagetables:16325 bounce:0 [ 1504.832090] free:548209 free_pcp:404 free_cma:0 [ 1504.869961] IPVS: ftp: loaded support on port[0] = 21 [ 1504.932119] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:0kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):48kB mapped:208948kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1505.003943] Node 1 active_anon:1217140kB inactive_anon:16kB active_file:28908kB inactive_file:24932kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27456kB dirty:192kB writeback:0kB shmem:944kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1505.088858] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1505.183930] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1505.189015] Node 0 DMA32 free:34076kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:0kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:396kB local_pcp:284kB free_cma:0kB [ 1505.304069] lowmem_reserve[]: 0 0 0 0 0 [ 1505.308470] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1505.393998] lowmem_reserve[]: 0 0 0 0 0 [ 1505.398032] Node 1 Normal free:2150184kB min:53612kB low:67012kB high:80412kB active_anon:1216892kB inactive_anon:16kB active_file:28908kB inactive_file:24932kB unevictable:0kB writepending:260kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12320kB pagetables:28160kB bounce:0kB free_pcp:964kB local_pcp:704kB free_cma:0kB [ 1505.445875] lowmem_reserve[]: 0 0 0 0 0 [ 1505.455727] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1505.483033] Node 0 DMA32: 377*4kB (UME) 1455*8kB (UMEH) 780*16kB (UMEH) 246*32kB (UMEH) 9*64kB (MEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34076kB [ 1505.522497] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1505.533592] Node 1 Normal: 149*4kB (UME) 8*8kB (UME) 264*16kB (UME) 214*32kB (UME) 55*64kB (UE) 15*128kB (UM) 2*256kB (ME) 5*512kB (UME) 5*1024kB (UME) 5*2048kB (UE) 516*4096kB (UM) = 2149140kB [ 1505.551537] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1505.578017] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1505.586776] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1505.595809] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1505.604755] 14012 total pagecache pages [ 1505.622640] 0 pages in swap cache [ 1505.626124] Swap cache stats: add 0, delete 0, find 0/0 [ 1505.646517] Free swap = 0kB [ 1505.657753] Total swap = 0kB [ 1505.660899] 1965979 pages RAM [ 1505.664015] 0 pages HighMem/MovableOnly [ 1505.668008] 339049 pages reserved [ 1505.676604] 0 pages cma reserved 07:19:45 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000540)='/dev/sequencer\x00', 0x210802, 0x0) getsockopt$netrom_NETROM_T2(r3, 0x103, 0x2, &(0x7f0000000980)=0xffff8001, &(0x7f00000009c0)=0x4) r4 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = fcntl$dupfd(r5, 0x0, r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$KVM_SET_LAPIC(r6, 0x4400ae8f, &(0x7f0000000080)={"4b95da82538302fd24a1f184dbf883a03da5a3bc7e0631f9cc0050e160726a10341901e72d42d1a8cd9d7ce3f8210cb325908df66610f75372fd753b2ed93576c62b6a59fc9367d08b4c3d0e1c5c2d9606de5b9341b9ceac971098dbd69affe9e5f3fc377922173c3f44313dd573555152d5fbb1b7c80d1988c1a884d8cd74c813cb3297eae0102ba6e4db6e501364995803b4bccefedbf9686c235ebfb9e2ea28753536519865dc5ec0f50dab05cfe286d07b88edd14abd43a753db4a797f4cebc5d3ad3bc563bab548d5178c53079d0a3912f125863df79e4daae3cb478bd9db29cd530aafd9640e487d12570b107f0a10375eaca647e4222b2914709f8d864d051772194e902b204f4990cbfc69f940ad22e89658eb4b33596774d606e51bc57ced8795da153d2b1d33115e06de092166625162196143a5ad5dd0faabe46cf8d58a1fda37524158a45808642e3f0f0f6b9abf2172ca3b644daf096dba6ab30057393521e3d2b946c243b00da8c7248b3d67f53f35fac5589b084fef59c8b49587c62e1b6cfdeeb5d3e7b3daaebef1d71c8d48d6473bf3131ae4924f0d1bca7e3b5da1c4b498c78cd58a8a409cb6156804a48af9c3f822998c734c98a595889864f8a1224623e6e8c8de1829703a71b9697ed80dfddfa1c0bfc1556423cf0586c66fc968720443b77947fb8b0ff3ee76b2aecde6f22b85f60173d072fd94873929deccc0b8c2dd24ff4e2097fd7aa4b495dee7b540ca116b80fa00eed6c7cf48e4945f600a45d9fb3349f8b6ee08cf46077c442ea7a974e54185601beb4494c0621e49c03b274ebf9f15654a8afa3ccf477a1a85f9bd61f79c64302b10868ba4eaeeed42236fefdc55d18b02f15aa759a313b73c53dd9fba96a4a42378b8fc3e8d24943810ddc762d47e0070fc0ced44237d2c3f12c06fec2a0f158c1025851d41758adc3d17c640502901ee7da422a8dacf9e5a936130d725b1602440869b09653c1eac10003867cbca49c0edf6e75e9316af692f60aba7914db6e69d384e3ceb0168b91e2986869b2e1269c8bd27083b833ec7446c6dafdad806b56df91c64ace800654bce8946ec0f1fd642df1b58b5b1cc9d0a75058477db989917496669884319ac19fa805941988653f674d2085ad6bae69d02e327a617143f41c7e3f8135a86f3080bb7bd6253dd6c2b6a4fa4f8c1caf0071f4a7ae8b38605d8114842e7ba93691525ddb0412c2f2c950ac738c7d385452d6ea34944caa892e70c1f23462aa992519108bceda803aa0182d962a0de87ae99538375c0a578ab556905c3cf4357639254181444327444cc1f35f0b70196fca7797b13f05997bb5831a479e210f0822c4ca7f21bd6be08ec6411d8705b7b53a7d558d36f1ab9a289a18b6f24c1321c661d157f8e442865a58f106ac934d8aff4113ca16b2d7e2085933b"}) dup2(r4, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB="c9"], 0x1) 07:19:45 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) sendmsg$IPSET_CMD_SAVE(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x3000881}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, 0x8, 0x6, 0x3, 0x0, 0x0, {0xf, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4}, 0x40000) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) r7 = fcntl$dupfd(r6, 0x0, r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) ioctl$VHOST_SET_LOG_FD(r5, 0x4004af07, &(0x7f0000000200)=r7) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) 07:19:45 executing program 5: r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000740)={0x26, 'skcipher\x00', 0x0, 0x0, 'chacha20-simd\x00'}, 0x58) setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000080)="b7f2288a911993f0265df5cf1cdd8b55515bdc50b38a3ebf3defb30f8a906151", 0x20) r1 = accept$alg(r0, 0x0, 0x0) write$binfmt_script(r1, &(0x7f0000000600)=ANY=[@ANYRESDEC, @ANYRES16, @ANYBLOB="f4f080d157054e06a15f1f107832d96225f16222f9096029aff00c2bc2b8311f0fb0a24eecadefe8462626d6488ed2cb9b90c774986a6d38645de058945f06f80bcf274267c30aa57dd27db02e3ece038fd5c851e9d2adc308dc2a5f10e03d9a13041d", @ANYPTR64], 0x81) readv(r1, &(0x7f0000000540)=[{&(0x7f0000000100)=""/248, 0xf8}], 0x1) 07:19:45 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$VIDIOC_TRY_EXT_CTRLS(0xffffffffffffffff, 0xc0205649, &(0x7f0000000440)={0xa10000, 0xca80, 0x9, 0xffffffffffffffff, 0x0, &(0x7f0000000400)={0x9a0905, 0x102, [], @value=0x8}}) ioctl$PPPIOCGUNIT(r3, 0x80047456, &(0x7f0000000480)) r4 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000500)='/selinux/policy\x00', 0x0, 0x0) ioctl$KVM_DEASSIGN_PCI_DEVICE(r4, 0x4040ae72, &(0x7f0000000540)={0x8, 0x8, 0x1f, 0x4, 0x7}) ioctl$SNDRV_CTL_IOCTL_ELEM_LOCK(r1, 0x40405514, &(0x7f00000004c0)={0x9, 0x3, 0x5, 0x7ff, '\x00', 0x3f}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r5 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r5, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) syz_mount_image$ntfs(&(0x7f0000000080)='ntfs\x00', &(0x7f00000000c0)='./file0\x00', 0x401, 0x4, &(0x7f0000000380)=[{&(0x7f0000000100)="3eeb966bf36627f8efa06da56cc2bf0c6b69caa6ef35feacba57f79e286ebcf2da152e7e845e92d8a4a1ab194e31aaa0687329aaa528a3308ac8920b38ccd4cadc8bf330785b75bdc38e9a13cbbf42a1e8e7ad25cb26de6f575eb422f9f5ff7753c846f75d5998fe7d9ab0a7ab6723a86681a23c4a6e21f404e15a3e4fe9167b20422ec4b3f1b1058798482f48cc9f582fdaeb28e192534f37b8eeea2884", 0x9e, 0x3}, {&(0x7f00000001c0)="1c961a0bf94c41f34e3de51c9ced1b8eb4f1eab07ad5b29eabd3e958ae83958b25ab918669c2dc75d62ab53707f53508366716bbaa1f048b761fba2aec3c441dabcb3db6348adcb620efcb9490b8695f1ca5c15ba19b87925dc01670a649b6b7ad6df0abf2b23c11ff3f6cffd7339e7bd3e591d466dd4ee36ae3b5c191091544e3e1fc56afd7a8a88e0738a7fd833bc7a394d5d694c05730e07960c1f0fe28a531c0d75264f5fb093df2458b5bf6697776ca37b4f7941888d093e12d8d7e2a69d00ffc7790b34f6fbe332849bfe33beeed7da2c83ab1f0eaa9ed2b237363a06374e654", 0xe3, 0x3ff}, {&(0x7f00000002c0)="c48e98c038ed742041790ffae5976a76886a40eb7469844a581a53375c75c052bed060800da43eaf843ab48623e0795a84ef938b9764f1d79846960b00411d9ffff585789f812be1593210f0dc", 0x4d, 0x9}, {&(0x7f0000000340)="f7c2cef1a292bf321ee88477c3a0a158f3a480d639179bd8cff8f2f0d61a9ffba3002a3a60044d1ed0fd2573772f668b118e3190", 0x34, 0x7}], 0x1000, &(0x7f0000000980)=ANY=[@ANYBLOB="636173655f73656e7369746976653d7965732c73684f7703752a940dd33d6c65733d6e6f2c6e6c733d63703433372c6572726f72733d7265636f7665722c637cbe6daaa896d2de15621e617365130500000000000076653d7965732c68000000007365636c6162656c2c730900636b66736465663d2f6465762f6b", @ANYRESDEC, @ANYBLOB="c0e3ff7a144936d4c88898b62dba180b21d8602be61baacb47fafcc13a01ac8b68d331d7967f227c6260cdc4a9772aa508c429897bdd8f34ea9f60b86eca8747f986e08dbb44ffba4f3ae89184bdef0db07a237a0bea16b4148eddf2a853ed8db1a41013a2f9f1b956d3f70dbb8c37a3149a53b4a7cf2082d8a120ec710b66972f6c777eebc1ee79b21edc7fa5ae3b2300"/155]) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000ac0)=ANY=[@ANYBLOB="ba5e9d24aee801190c8004a96ff2fdc926ee6584e2649e012ecb8f0f98c54a3d75fa2f7209a1a3e3330b925d"], 0x1) 07:19:45 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) getgid() ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140)='nl80211\x00') sendmsg$NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000000)={0x1c, r5, 0xb0343aabd1184b87, 0x0, 0x0, {}, [@NL80211_ATTR_IFINDEX={0x8}]}, 0x1c}}, 0x0) getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f00000000c0)={{{@in=@dev, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, {{@in=@empty}, 0x0, @in=@local}}, &(0x7f00000001c0)=0xe8) sendmsg$NL80211_CMD_SET_BEACON(r4, &(0x7f00000003c0)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x2080}, 0xc, &(0x7f0000000380)={&(0x7f0000000200)={0x148, r5, 0x300, 0x70bd29, 0x25dfdbfb, {}, [@NL80211_ATTR_INACTIVITY_TIMEOUT={0x6, 0x96, 0xff}, @NL80211_ATTR_BEACON_HEAD={0x11c, 0xe, "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"}, @NL80211_ATTR_IFINDEX={0x8, 0x3, r6}, @NL80211_ATTR_P2P_CTWINDOW={0x5}]}, 0x148}}, 0x40004) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setitimer(0x2, &(0x7f0000000400)={{0x0, 0x7530}}, &(0x7f0000000440)) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:19:45 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) bind$bt_l2cap(r1, &(0x7f0000000040)={0x1f, 0x8, @any, 0x0, 0x2}, 0xe) r2 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/avc/cache_stats\x00', 0x0, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(r4, 0x0, 0x40, &(0x7f0000000340)=@nat={'nat\x00', 0x1b, 0x5, 0x4a0, 0xd0, 0xd0, 0xffffffff, 0x2e8, 0x1d8, 0x408, 0x408, 0xffffffff, 0x408, 0x408, 0x5, &(0x7f00000002c0), {[{{@uncond, 0x0, 0x98, 0xd0, 0x0, {}, [@common=@inet=@dscp={{0x28, 'dscp\x00'}, {0x1}}]}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0x4, @dev={0xac, 0x14, 0x14, 0x20}, @loopback, @icmp_id=0x64, @port=0x4e22}}}}, {{@uncond, 0x0, 0xd0, 0x108, 0x0, {}, [@common=@socket0={{0x20, 'socket\x00'}}, @common=@set={{0x40, 'set\x00'}, {{0x0, [0x0, 0x4, 0x1, 0x6, 0x6], 0x2, 0x1}}}]}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0x0, @dev={0xac, 0x14, 0x14, 0x2d}, @multicast1, @icmp_id=0x65, @gre_key=0x7}}}}, {{@uncond, 0x0, 0xd8, 0x110, 0x0, {}, [@common=@ttl={{0x28, 'ttl\x00'}, {0x1, 0x1f}}, @common=@set={{0x40, 'set\x00'}, {{0x0, [0x0, 0x3, 0x1, 0x2, 0x7, 0x3], 0x2, 0x5}}}]}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0x0, @multicast2, @broadcast, @icmp_id=0x64, @port=0x4e24}}}}, {{@uncond, 0x0, 0xe8, 0x120, 0x0, {}, [@common=@icmp={{0x28, 'icmp\x00'}, {0x10, "a370"}}, @common=@osf={{0x50, 'osf\x00'}, {'syz0\x00', 0x0, 0xd, 0x0, 0x1}}]}, @SNAT0={0x38, 'SNAT\x00', 0x0, {0x1, {0x11, @multicast2, @dev={0xac, 0x14, 0x14, 0x13}, @port=0x4e24, @icmp_id=0x68}}}}], {{[], 0x0, 0x70, 0x98}, {0x28}}}}, 0x500) sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r2, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x8}, 0xc, &(0x7f0000000280)={&(0x7f0000000200)={0x20, 0x0, 0x8, 0x201, 0x0, 0x0, {0x1, 0x0, 0x4}, [@CTA_TIMEOUT_DATA={0x0, 0x4, 0x0, 0x1, @gre=[@CTA_TIMEOUT_GRE_UNREPLIED={0x0, 0x1, 0x1, 0x0, 0xba}]}]}, 0xfffffffffffffd14}}, 0x1) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) 07:19:45 executing program 5: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f0000000000)="080db5055e0bcfe847a071") recvmmsg(r0, &(0x7f0000002440)=[{{0x0, 0x2a0, &(0x7f0000000180)=[{&(0x7f00000005c0)=""/4096, 0x13}], 0x1, 0x0, 0x0, 0xa00100}}], 0x4000000000001ba, 0x0, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000015c0)=ANY=[@ANYBLOB="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"/316, @ANYRES32=0x0, @ANYBLOB="0000109e0dffffff5cdc4308009b936c654bf55e6ce50acc152b55e757cb75c52e3a284e2774db2f874b0b8824d65067662a3d138a90cfe2d089c55fd79d933bc7844a65d570206224e2d5b10f4307"], 0x24}}, 0x0) 07:19:46 executing program 3: r0 = socket$inet6_udplite(0xa, 0x2, 0x88) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x410, 0x0, 0x250, 0x250, 0x250, 0x250, 0x340, 0x340, 0x340, 0x340, 0x340, 0x3, 0x0, {[{{@ipv6={@local, @remote, [], [], 'veth1_to_batadv\x00', 'veth0_to_hsr\x00'}, 0x0, 0x228, 0x250, 0x0, {}, [@common=@inet=@hashlimit3={{0x158, 'hashlimit\x00'}, {'erspan0\x00', {0x2, 0x0, 0x48, 0x0, 0x0, 0xffffffff, 0x8}}}, @inet=@rpfilter={{0x28, 'rpfilter\x00'}}]}, @common=@unspec=@NFQUEUE3={0x28, 'NFQUEUE\x00'}}, {{@uncond=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48], 0x0, 0xa8, 0xf0}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'snmp_trap\x00'}}}], {{[], 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x470) 07:19:46 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:19:46 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x204004, 0x0) [ 1506.094691] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1506.112419] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1506.166232] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1506.189675] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1506.208946] CPU: 0 PID: 24914 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1506.216876] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1506.226240] Call Trace: [ 1506.228842] dump_stack+0x13e/0x194 [ 1506.232487] warn_alloc.cold+0x96/0x1af [ 1506.236473] ? zone_watermark_ok_safe+0x280/0x280 [ 1506.241337] ? wait_for_completion+0x390/0x390 [ 1506.244912] syz-executor.4: [ 1506.245931] __alloc_pages_slowpath+0x2114/0x26c0 [ 1506.245957] ? warn_alloc+0xf0/0xf0 [ 1506.245966] ? find_held_lock+0x2d/0x110 [ 1506.245979] ? fs_reclaim_acquire+0x10/0x10 [ 1506.257459] page allocation failure: order:0 [ 1506.261503] __alloc_pages_nodemask+0x5d3/0x700 [ 1506.261518] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1506.261525] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1506.261533] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1506.261552] alloc_pages_current+0xe7/0x1e0 [ 1506.261567] kvm_mmu_create+0xd1/0x1c0 [ 1506.299253] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1506.299430] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1506.310134] ? alloc_pages_current+0xef/0x1e0 07:19:46 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) umount2(&(0x7f0000000040)='./file0\x00', 0x1) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) [ 1506.314633] kvm_vcpu_init+0x26d/0x360 [ 1506.318523] vmx_create_vcpu+0xf3/0x2900 [ 1506.322626] ? __mutex_unlock_slowpath+0x75/0x780 [ 1506.327472] ? futex_wake+0x11c/0x3d0 [ 1506.331288] ? handle_rdmsr+0x6b0/0x6b0 [ 1506.335455] kvm_vm_ioctl+0x49c/0x1430 [ 1506.339347] ? __lock_acquire+0x5f7/0x4620 [ 1506.343588] ? kvm_vcpu_release+0xa0/0xa0 [ 1506.347740] ? trace_hardirqs_on+0x10/0x10 [ 1506.351972] ? trace_hardirqs_on+0x10/0x10 [ 1506.356237] ? save_trace+0x290/0x290 [ 1506.360041] ? __might_fault+0x104/0x1b0 [ 1506.364114] ? kvm_vcpu_release+0xa0/0xa0 [ 1506.364629] syz-executor.4 cpuset= [ 1506.368262] do_vfs_ioctl+0x75a/0xfe0 [ 1506.368276] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1506.368288] ? ioctl_preallocate+0x1a0/0x1a0 [ 1506.368307] ? security_file_ioctl+0x76/0xb0 [ 1506.389158] ? security_file_ioctl+0x83/0xb0 [ 1506.393580] SyS_ioctl+0x7f/0xb0 [ 1506.396950] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1506.400938] do_syscall_64+0x1d5/0x640 [ 1506.404961] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1506.410169] RIP: 0033:0x45c849 [ 1506.413358] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1506.421084] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1506.428364] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1506.431346] syz4 [ 1506.435630] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1506.435639] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1506.452157] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1506.471871] CPU: 1 PID: 24924 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1506.479791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1506.488669] xt_hashlimit: hashlimit invalid interval [ 1506.489141] Call Trace: [ 1506.489160] dump_stack+0x13e/0x194 [ 1506.489175] warn_alloc.cold+0x96/0x1af [ 1506.489187] ? zone_watermark_ok_safe+0x280/0x280 [ 1506.509294] ? wait_for_completion+0x390/0x390 [ 1506.513893] __alloc_pages_slowpath+0x2114/0x26c0 [ 1506.518755] ? warn_alloc+0xf0/0xf0 [ 1506.522386] ? find_held_lock+0x2d/0x110 [ 1506.526458] ? fs_reclaim_acquire+0x10/0x10 [ 1506.531532] __alloc_pages_nodemask+0x5d3/0x700 [ 1506.536210] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1506.541235] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1506.546083] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1506.551121] alloc_pages_current+0xe7/0x1e0 [ 1506.555471] kvm_mmu_create+0xd1/0x1c0 [ 1506.559372] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1506.563706] ? alloc_pages_current+0xef/0x1e0 [ 1506.568328] kvm_vcpu_init+0x26d/0x360 [ 1506.572229] vmx_create_vcpu+0xf3/0x2900 [ 1506.576299] ? __mutex_unlock_slowpath+0x75/0x780 [ 1506.581146] ? futex_wake+0x11c/0x3d0 [ 1506.584955] ? handle_rdmsr+0x6b0/0x6b0 [ 1506.588940] kvm_vm_ioctl+0x49c/0x1430 [ 1506.592868] ? __lock_acquire+0x5f7/0x4620 [ 1506.597117] ? kvm_vcpu_release+0xa0/0xa0 [ 1506.601269] ? trace_hardirqs_on+0x10/0x10 [ 1506.605519] ? trace_hardirqs_on+0x10/0x10 [ 1506.609762] ? save_trace+0x290/0x290 [ 1506.613568] ? __might_fault+0x104/0x1b0 [ 1506.617646] ? kvm_vcpu_release+0xa0/0xa0 [ 1506.621833] do_vfs_ioctl+0x75a/0xfe0 [ 1506.625646] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1506.630422] ? ioctl_preallocate+0x1a0/0x1a0 [ 1506.634847] ? security_file_ioctl+0x76/0xb0 [ 1506.639264] ? security_file_ioctl+0x83/0xb0 [ 1506.643685] SyS_ioctl+0x7f/0xb0 [ 1506.647227] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1506.651215] do_syscall_64+0x1d5/0x640 [ 1506.655111] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1506.660300] RIP: 0033:0x45c849 [ 1506.663490] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1506.671205] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1506.678478] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1506.685757] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1506.693033] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1506.700312] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1506.721983] mems_allowed=0-1 [ 1506.725162] CPU: 1 PID: 24913 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1506.733046] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1506.742402] Call Trace: [ 1506.744991] dump_stack+0x13e/0x194 [ 1506.748607] warn_alloc.cold+0x96/0x1af [ 1506.752567] ? zone_watermark_ok_safe+0x280/0x280 [ 1506.757399] ? wait_for_completion+0x390/0x390 [ 1506.761980] __alloc_pages_slowpath+0x2114/0x26c0 [ 1506.766825] ? warn_alloc+0xf0/0xf0 [ 1506.770450] ? find_held_lock+0x2d/0x110 [ 1506.774494] ? fs_reclaim_acquire+0x10/0x10 [ 1506.778809] __alloc_pages_nodemask+0x5d3/0x700 [ 1506.783484] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1506.788508] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1506.793355] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1506.798366] alloc_pages_current+0xe7/0x1e0 [ 1506.802691] kvm_mmu_create+0xd1/0x1c0 [ 1506.806591] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1506.810987] ? alloc_pages_current+0xef/0x1e0 [ 1506.815477] kvm_vcpu_init+0x26d/0x360 [ 1506.819359] vmx_create_vcpu+0xf3/0x2900 [ 1506.823413] ? __mutex_unlock_slowpath+0x75/0x780 [ 1506.828241] ? futex_wake+0x11c/0x3d0 [ 1506.832028] ? handle_rdmsr+0x6b0/0x6b0 [ 1506.836010] kvm_vm_ioctl+0x49c/0x1430 [ 1506.839911] ? __lock_acquire+0x5f7/0x4620 [ 1506.844136] ? kvm_vcpu_release+0xa0/0xa0 [ 1506.848289] ? trace_hardirqs_on+0x10/0x10 [ 1506.852520] ? trace_hardirqs_on+0x10/0x10 [ 1506.856748] ? save_trace+0x290/0x290 [ 1506.860537] ? __might_fault+0x104/0x1b0 [ 1506.864588] ? kvm_vcpu_release+0xa0/0xa0 [ 1506.868725] do_vfs_ioctl+0x75a/0xfe0 [ 1506.872516] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1506.877290] ? ioctl_preallocate+0x1a0/0x1a0 [ 1506.881689] ? security_file_ioctl+0x76/0xb0 [ 1506.886080] ? security_file_ioctl+0x83/0xb0 [ 1506.890484] SyS_ioctl+0x7f/0xb0 [ 1506.893835] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1506.897796] do_syscall_64+0x1d5/0x640 [ 1506.901674] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1506.906858] RIP: 0033:0x45c849 [ 1506.910035] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 07:19:47 executing program 3: r0 = socket$inet6(0xa, 0x2, 0x0) connect$inet6(r0, &(0x7f00000002c0), 0x1c) sendmmsg(r0, &(0x7f00000092c0), 0x4ff, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") [ 1506.917729] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1506.924995] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1506.932262] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1506.939517] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1506.946769] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1507.121510] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1507.196192] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1507.228774] warn_alloc_show_mem: 2 callbacks suppressed [ 1507.228777] Mem-Info: [ 1507.229563] CPU: 0 PID: 24928 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1507.244579] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1507.251831] active_anon:797068 inactive_anon:201 isolated_anon:0 [ 1507.251831] active_file:7236 inactive_file:6258 isolated_file:3 [ 1507.251831] unevictable:0 dirty:17 writeback:0 unstable:0 [ 1507.251831] slab_reclaimable:12651 slab_unreclaimable:131940 [ 1507.251831] mapped:59131 shmem:537 pagetables:16297 bounce:0 [ 1507.251831] free:548708 free_pcp:363 free_cma:0 [ 1507.254037] Call Trace: [ 1507.254054] dump_stack+0x13e/0x194 [ 1507.254077] warn_alloc.cold+0x96/0x1af [ 1507.297913] ? zone_watermark_ok_safe+0x280/0x280 [ 1507.302774] ? wait_for_completion+0x390/0x390 [ 1507.307376] __alloc_pages_slowpath+0x2114/0x26c0 [ 1507.312242] ? warn_alloc+0xf0/0xf0 [ 1507.315878] ? find_held_lock+0x2d/0x110 [ 1507.319954] ? fs_reclaim_acquire+0x10/0x10 [ 1507.324382] __alloc_pages_nodemask+0x5d3/0x700 [ 1507.329058] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1507.334086] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1507.338939] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1507.343976] alloc_pages_current+0xe7/0x1e0 [ 1507.348316] kvm_mmu_create+0xd1/0x1c0 [ 1507.352213] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1507.356545] ? alloc_pages_current+0xef/0x1e0 [ 1507.361090] kvm_vcpu_init+0x26d/0x360 [ 1507.364988] vmx_create_vcpu+0xf3/0x2900 [ 1507.369064] ? __mutex_unlock_slowpath+0x75/0x780 [ 1507.373936] ? futex_wake+0x11c/0x3d0 [ 1507.377756] ? handle_rdmsr+0x6b0/0x6b0 [ 1507.381741] kvm_vm_ioctl+0x49c/0x1430 [ 1507.385646] ? __lock_acquire+0x5f7/0x4620 [ 1507.389891] ? kvm_vcpu_release+0xa0/0xa0 [ 1507.394073] ? trace_hardirqs_on+0x10/0x10 [ 1507.398322] ? trace_hardirqs_on+0x10/0x10 [ 1507.402574] ? save_trace+0x290/0x290 [ 1507.406381] ? __might_fault+0x104/0x1b0 [ 1507.410450] ? kvm_vcpu_release+0xa0/0xa0 [ 1507.414610] do_vfs_ioctl+0x75a/0xfe0 [ 1507.418415] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1507.423207] ? ioctl_preallocate+0x1a0/0x1a0 [ 1507.427631] ? security_file_ioctl+0x76/0xb0 [ 1507.432052] ? security_file_ioctl+0x83/0xb0 [ 1507.436469] SyS_ioctl+0x7f/0xb0 [ 1507.439833] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1507.443809] do_syscall_64+0x1d5/0x640 [ 1507.447699] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1507.452888] RIP: 0033:0x45c849 [ 1507.456084] RSP: 002b:00007f4cd9aa7c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1507.463792] RAX: ffffffffffffffda RBX: 00007f4cd9aa86d4 RCX: 000000000045c849 [ 1507.471070] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1507.478464] RBP: 000000000076bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 1507.485782] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1507.493059] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bfac 07:19:47 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1507.534169] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:36kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):12kB mapped:208948kB dirty:0kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 07:19:47 executing program 2: socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r0, 0x0, r0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) r3 = dup(r2) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$UFFDIO_UNREGISTER(r5, 0x8010aa01, &(0x7f0000000040)={&(0x7f0000ffd000/0x2000)=nil, 0x2000}) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) 07:19:47 executing program 3: r0 = socket$inet_dccp(0x2, 0x6, 0x0) r1 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) listen(r1, 0x6) connect$inet(r0, &(0x7f0000e5c000)={0x2, 0x4e20, @loopback=0x7f000002}, 0x10) [ 1507.686673] Node 1 active_anon:1217112kB inactive_anon:20kB active_file:28908kB inactive_file:25028kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27476kB dirty:68kB writeback:0kB shmem:944kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1507.818628] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1507.921246] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1507.951113] Node 0 DMA32 free:35408kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:36kB inactive_file:4kB unevictable:0kB writepending:0kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:140kB local_pcp:88kB free_cma:0kB [ 1508.070107] lowmem_reserve[]: 0 0 0 0 0 [ 1508.074143] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1508.180881] lowmem_reserve[]: 0 0 0 0 0 [ 1508.184938] Node 1 Normal free:2157664kB min:53612kB low:67012kB high:80412kB active_anon:1216740kB inactive_anon:16kB active_file:28916kB inactive_file:25044kB unevictable:0kB writepending:52kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12288kB pagetables:27988kB bounce:0kB free_pcp:1208kB local_pcp:664kB free_cma:0kB [ 1508.300091] lowmem_reserve[]: 0 0 0 0 0 [ 1508.304132] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1508.360077] Node 0 DMA32: 730*4kB (UME) 1447*8kB (UMEH) 779*16kB (UMEH) 245*32kB (UMEH) 9*64kB (MEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 35376kB [ 1508.423676] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1508.460068] Node 1 Normal: 188*4kB (UM) 783*8kB (UM) 460*16kB (UM) 230*32kB (UM) 56*64kB (UM) 9*128kB (U) 3*256kB (UME) 5*512kB (UME) 5*1024kB (UME) 5*2048kB (UE) 516*4096kB (UM) = 2158696kB [ 1508.510081] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1508.550078] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1508.558738] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1508.600135] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1508.608754] 14039 total pagecache pages [ 1508.640089] 0 pages in swap cache [ 1508.643588] Swap cache stats: add 0, delete 0, find 0/0 [ 1508.648954] Free swap = 0kB [ 1508.690157] Total swap = 0kB [ 1508.693223] 1965979 pages RAM [ 1508.704060] 0 pages HighMem/MovableOnly [ 1508.708075] 339049 pages reserved [ 1508.735505] 0 pages cma reserved 07:19:48 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) r7 = fcntl$dupfd(r6, 0x0, r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) ioctl$KVM_IOEVENTFD(r7, 0x4040ae79, &(0x7f0000000100)={0xf000, &(0x7f00000000c0), 0x2, r3}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000080)=ANY=[@ANYRESHEX=0x0], 0x1) 07:19:48 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = socket$nl_generic(0x10, 0x3, 0x10) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = syz_genetlink_get_family_id$tipc2(&(0x7f00000000c0)='TIPCv2\x00') sendmsg$TIPC_NL_MON_SET(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x14, r4, 0x1}, 0x14}}, 0x0) sendmsg$TIPC_NL_NET_GET(r2, &(0x7f0000000100)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000080)={&(0x7f0000000300)={0x78, r4, 0x200, 0x70bd28, 0x25dfdbfd, {}, [@TIPC_NLA_NET={0xc, 0x7, 0x0, 0x1, [@TIPC_NLA_NET_ID={0x8, 0x1, 0x3}]}, @TIPC_NLA_PUBL={0xc, 0x3, 0x0, 0x1, [@TIPC_NLA_PUBL_TYPE={0x8, 0x1, 0xffffffff}]}, @TIPC_NLA_NODE={0x2c, 0x6, 0x0, 0x1, [@TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_UP={0x4}, @TIPC_NLA_NODE_ADDR={0x8}, @TIPC_NLA_NODE_UP={0x4}]}, @TIPC_NLA_MEDIA={0x20, 0x5, 0x0, 0x1, [@TIPC_NLA_MEDIA_NAME={0x8, 0x1, 'udp\x00'}, @TIPC_NLA_MEDIA_NAME={0x7, 0x1, 'ib\x00'}, @TIPC_NLA_MEDIA_PROP={0xc, 0x2, 0x0, 0x1, [@TIPC_NLA_PROP_MTU={0x8, 0x4, 0xf7c7}]}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x40081}, 0x800) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = fcntl$dupfd(r5, 0x0, r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) write$UHID_INPUT2(r6, &(0x7f00000001c0)={0xc, {0xfc, "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"}}, 0x102) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) 07:19:48 executing program 3: r0 = socket$inet_dccp(0x2, 0x6, 0x0) r1 = socket$inet6(0xa, 0x6, 0x0) bind$inet6(r1, &(0x7f0000000000)={0xa, 0x4e20}, 0x1c) listen(r1, 0x6) connect$inet(r0, &(0x7f0000e5c000)={0x2, 0x4e20, @loopback=0x7f000002}, 0x10) getsockopt$inet_int(r0, 0x10d, 0xce, &(0x7f0000000140), &(0x7f00000000c0)=0x4) 07:19:48 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$EXT4_IOC_GROUP_EXTEND(r0, 0x40086607, &(0x7f0000000080)=0x18cd) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b75fb3488fd8015bba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377aba09e7b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047706865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:19:48 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:19:48 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b75fb3488fd8015bba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377aba09e7b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047706865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140)='nl80211\x00') sendmsg$NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f00000008c0)={&(0x7f0000000000)={0x1c, r4, 0xb0343aabd1184b87, 0x0, 0x0, {}, [@NL80211_ATTR_IFINDEX={0x8}]}, 0x1c}}, 0x0) sendmsg$NL80211_CMD_GET_KEY(r3, &(0x7f0000000240)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000200)={&(0x7f00000003c0)={0xa4, 0x0, 0x20, 0x70bd2a, 0x25dfdbfd, {}, [@NL80211_ATTR_KEY_DEFAULT_TYPES={0x8, 0x6e, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}, @NL80211_ATTR_KEY_TYPE={0x8, 0x37, 0x2}, @NL80211_ATTR_KEY_IDX={0x5}, @NL80211_ATTR_KEY={0x74, 0x50, 0x0, 0x1, [@NL80211_KEY_DATA_WEP40={0x9, 0x1, "ab23bec457"}, @NL80211_KEY_DATA_WEP104={0x11, 0x1, "c2113c6ed99fcc8386767bd910"}, @NL80211_KEY_DEFAULT_TYPES={0x24, 0x8, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}]}, @NL80211_KEY_IDX={0x5, 0x2, 0x2}, @NL80211_KEY_DEFAULT_TYPES={0xc, 0x8, 0x0, 0x1, [@NL80211_KEY_DEFAULT_TYPE_UNICAST={0x4}, @NL80211_KEY_DEFAULT_TYPE_MULTICAST={0x4}]}, @NL80211_KEY_SEQ={0x9, 0x4, "f8b4e77868"}, @NL80211_KEY_DATA_WEP40={0x9, 0x1, "8c92656d23"}]}, @NL80211_ATTR_KEY={0x4}]}, 0xa4}, 0x1, 0x0, 0x0, 0x10}, 0x4000) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r7, 0x0, r7) setsockopt$inet6_tcp_buf(r7, 0x6, 0x1c, &(0x7f0000000280)="935f73f5191b93f7762c25039aa806a9469ee59a2cf91ea7fc3ed16902f9047060e1157c756559950d5eb20fc112769a824214cc03252fc0d84f342b757f695d1dbaa8ef2a633f3a7fabb9b66c42cbe1633e4fc158349e3e54e3f0751e05b3f86760d30c6d5ef3ad472756b1b441c8fa89bead056e3442a0071eb1362c58651901399594bd67c69e95dba78fabce661a3149d8d8467d3557dad67b7bbc719de574d5bfe219558680ec6cb4aa6c18fffb96114dc2b83cc4f3292858134a500db50e7a1be719c576f72a1a38957938641a9a99f3da0ae8", 0xd6) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) bind$l2tp(r3, &(0x7f0000000080)={0x2, 0x0, @remote, 0x4}, 0x10) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:19:48 executing program 3: clone(0x2000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) keyctl$set_timeout(0xf, 0x0, 0x0) request_key(&(0x7f000000aff5)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x3, 0x6c}, &(0x7f0000001fee)='R\x04r\x01\x04\x00\x00\x00\x00\x00!rVidzDe', 0x0) 07:19:49 executing program 2: socket$inet_icmp_raw(0x2, 0x3, 0x1) syz_open_dev$vivid(&(0x7f0000000080)='/dev/video#\x00', 0x1, 0x2) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r0, 0x0, r0) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) syz_genetlink_get_family_id$ethtool(&(0x7f0000000040)='ethtool\x00') 07:19:49 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r0, 0x0, 0x10b, 0x200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10) sendto$inet(r0, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0x0, 0x0, 0xa) 07:19:49 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:19:49 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) r2 = syz_open_dev$mouse(&(0x7f00000001c0)='/dev/input/mouse#\x00', 0xffff, 0x200) fcntl$F_GET_RW_HINT(r2, 0x40b, &(0x7f0000000200)) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) write$P9_RWRITE(r4, &(0x7f0000000040)={0xb, 0x77, 0x1, 0x3}, 0xb) [ 1509.312460] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1509.324846] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1509.349748] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1509.404043] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1509.419596] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1509.444990] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1509.447163] CPU: 0 PID: 25021 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1509.458316] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1509.467679] Call Trace: [ 1509.470287] dump_stack+0x13e/0x194 [ 1509.473924] warn_alloc.cold+0x96/0x1af [ 1509.477903] ? zone_watermark_ok_safe+0x280/0x280 [ 1509.482764] ? wait_for_completion+0x390/0x390 [ 1509.487360] __alloc_pages_slowpath+0x2114/0x26c0 [ 1509.492228] ? warn_alloc+0xf0/0xf0 [ 1509.495862] ? find_held_lock+0x2d/0x110 [ 1509.499926] ? fs_reclaim_acquire+0x10/0x10 [ 1509.504249] __alloc_pages_nodemask+0x5d3/0x700 [ 1509.508917] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1509.513934] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1509.518788] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1509.523838] alloc_pages_current+0xe7/0x1e0 [ 1509.528159] kvm_mmu_create+0xd1/0x1c0 [ 1509.532050] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1509.536377] ? alloc_pages_current+0xef/0x1e0 [ 1509.540880] kvm_vcpu_init+0x26d/0x360 [ 1509.544777] vmx_create_vcpu+0xf3/0x2900 [ 1509.548851] ? __mutex_unlock_slowpath+0x75/0x780 [ 1509.553703] ? futex_wake+0x11c/0x3d0 [ 1509.557504] ? handle_rdmsr+0x6b0/0x6b0 [ 1509.561488] kvm_vm_ioctl+0x49c/0x1430 [ 1509.565377] ? __lock_acquire+0x5f7/0x4620 [ 1509.569697] ? kvm_vcpu_release+0xa0/0xa0 [ 1509.573855] ? trace_hardirqs_on+0x10/0x10 [ 1509.578108] ? trace_hardirqs_on+0x10/0x10 [ 1509.582352] ? save_trace+0x290/0x290 [ 1509.586156] ? __might_fault+0x104/0x1b0 [ 1509.590315] ? kvm_vcpu_release+0xa0/0xa0 [ 1509.594468] do_vfs_ioctl+0x75a/0xfe0 [ 1509.598260] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1509.603144] ? ioctl_preallocate+0x1a0/0x1a0 [ 1509.607571] ? security_file_ioctl+0x76/0xb0 [ 1509.611992] ? security_file_ioctl+0x83/0xb0 [ 1509.616411] SyS_ioctl+0x7f/0xb0 [ 1509.619790] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1509.623766] do_syscall_64+0x1d5/0x640 [ 1509.627658] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1509.632843] RIP: 0033:0x45c849 [ 1509.636019] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 07:19:49 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) socket$netlink(0x10, 0x3, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1509.643733] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1509.651000] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1509.658267] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1509.665539] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1509.672813] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1509.712059] CPU: 1 PID: 25029 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1509.719980] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1509.729340] Call Trace: [ 1509.731942] dump_stack+0x13e/0x194 [ 1509.735576] warn_alloc.cold+0x96/0x1af [ 1509.739575] ? zone_watermark_ok_safe+0x280/0x280 [ 1509.744433] ? wait_for_completion+0x390/0x390 [ 1509.749028] __alloc_pages_slowpath+0x2114/0x26c0 [ 1509.753891] ? warn_alloc+0xf0/0xf0 [ 1509.757550] ? find_held_lock+0x2d/0x110 [ 1509.761618] ? fs_reclaim_acquire+0x10/0x10 [ 1509.765958] __alloc_pages_nodemask+0x5d3/0x700 [ 1509.770645] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1509.775821] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1509.780680] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1509.785715] alloc_pages_current+0xe7/0x1e0 [ 1509.790059] kvm_mmu_create+0xd1/0x1c0 [ 1509.793964] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1509.798293] ? alloc_pages_current+0xef/0x1e0 [ 1509.802800] kvm_vcpu_init+0x26d/0x360 [ 1509.806699] vmx_create_vcpu+0xf3/0x2900 [ 1509.810771] ? __mutex_unlock_slowpath+0x75/0x780 [ 1509.815615] ? futex_wake+0x11c/0x3d0 [ 1509.819424] ? handle_rdmsr+0x6b0/0x6b0 [ 1509.823408] kvm_vm_ioctl+0x49c/0x1430 [ 1509.827302] ? __lock_acquire+0x5f7/0x4620 [ 1509.831547] ? kvm_vcpu_release+0xa0/0xa0 [ 1509.835699] ? trace_hardirqs_on+0x10/0x10 [ 1509.839945] ? trace_hardirqs_on+0x10/0x10 [ 1509.844194] ? save_trace+0x290/0x290 [ 1509.848003] ? __might_fault+0x104/0x1b0 [ 1509.852082] ? kvm_vcpu_release+0xa0/0xa0 [ 1509.856241] do_vfs_ioctl+0x75a/0xfe0 [ 1509.860051] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1509.864822] ? ioctl_preallocate+0x1a0/0x1a0 [ 1509.869260] ? security_file_ioctl+0x76/0xb0 [ 1509.873680] ? security_file_ioctl+0x83/0xb0 [ 1509.878100] SyS_ioctl+0x7f/0xb0 [ 1509.881474] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1509.885462] do_syscall_64+0x1d5/0x640 [ 1509.889363] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1509.894551] RIP: 0033:0x45c849 [ 1509.897738] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1509.905457] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1509.912737] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1509.920016] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1509.927295] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1509.934586] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1509.960095] CPU: 1 PID: 25019 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1509.968019] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1509.977378] Call Trace: [ 1509.979983] dump_stack+0x13e/0x194 [ 1509.983654] warn_alloc.cold+0x96/0x1af [ 1509.987641] ? zone_watermark_ok_safe+0x280/0x280 [ 1509.992517] ? wait_for_completion+0x390/0x390 [ 1509.997119] __alloc_pages_slowpath+0x2114/0x26c0 [ 1510.001986] ? warn_alloc+0xf0/0xf0 [ 1510.005625] ? find_held_lock+0x2d/0x110 [ 1510.009696] ? fs_reclaim_acquire+0x10/0x10 [ 1510.014144] __alloc_pages_nodemask+0x5d3/0x700 [ 1510.018827] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1510.023860] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1510.028711] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1510.033878] alloc_pages_current+0xe7/0x1e0 [ 1510.038217] kvm_mmu_create+0xd1/0x1c0 [ 1510.042148] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1510.046479] ? alloc_pages_current+0xef/0x1e0 [ 1510.050983] kvm_vcpu_init+0x26d/0x360 [ 1510.054879] vmx_create_vcpu+0xf3/0x2900 [ 1510.058954] ? __mutex_unlock_slowpath+0x75/0x780 [ 1510.063803] ? futex_wake+0x11c/0x3d0 [ 1510.067611] ? handle_rdmsr+0x6b0/0x6b0 [ 1510.071595] kvm_vm_ioctl+0x49c/0x1430 [ 1510.075488] ? __lock_acquire+0x5f7/0x4620 [ 1510.079729] ? kvm_vcpu_release+0xa0/0xa0 [ 1510.083888] ? trace_hardirqs_on+0x10/0x10 [ 1510.088131] ? trace_hardirqs_on+0x10/0x10 [ 1510.092375] ? save_trace+0x290/0x290 [ 1510.096182] ? __might_fault+0x104/0x1b0 [ 1510.100289] ? kvm_vcpu_release+0xa0/0xa0 [ 1510.104447] do_vfs_ioctl+0x75a/0xfe0 [ 1510.108255] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1510.113018] ? ioctl_preallocate+0x1a0/0x1a0 [ 1510.117445] ? security_file_ioctl+0x76/0xb0 [ 1510.121863] ? security_file_ioctl+0x83/0xb0 [ 1510.126282] SyS_ioctl+0x7f/0xb0 [ 1510.129661] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1510.133644] do_syscall_64+0x1d5/0x640 [ 1510.137547] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1510.142773] RIP: 0033:0x45c849 [ 1510.145975] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1510.153693] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1510.160970] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1510.168244] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1510.175519] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1510.182795] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1510.190606] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1510.190630] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1510.278980] CPU: 0 PID: 25068 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1510.286915] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1510.296275] Call Trace: [ 1510.298876] dump_stack+0x13e/0x194 [ 1510.302506] warn_alloc.cold+0x96/0x1af [ 1510.306480] ? zone_watermark_ok_safe+0x280/0x280 [ 1510.311344] ? wait_for_completion+0x390/0x390 [ 1510.316060] __alloc_pages_slowpath+0x2114/0x26c0 [ 1510.320933] ? warn_alloc+0xf0/0xf0 [ 1510.324569] ? find_held_lock+0x2d/0x110 [ 1510.328632] ? fs_reclaim_acquire+0x10/0x10 [ 1510.332975] __alloc_pages_nodemask+0x5d3/0x700 [ 1510.337654] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1510.342673] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1510.347523] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1510.352564] alloc_pages_current+0xe7/0x1e0 [ 1510.356900] kvm_mmu_create+0xd1/0x1c0 [ 1510.360793] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1510.365119] ? alloc_pages_current+0xef/0x1e0 [ 1510.369716] kvm_vcpu_init+0x26d/0x360 [ 1510.373618] vmx_create_vcpu+0xf3/0x2900 [ 1510.377690] ? __mutex_unlock_slowpath+0x75/0x780 [ 1510.382549] ? handle_rdmsr+0x6b0/0x6b0 [ 1510.386544] kvm_vm_ioctl+0x49c/0x1430 [ 1510.390441] ? __lock_acquire+0x5f7/0x4620 [ 1510.394690] ? kvm_vcpu_release+0xa0/0xa0 [ 1510.398842] ? trace_hardirqs_on+0x10/0x10 [ 1510.403092] ? trace_hardirqs_on+0x10/0x10 [ 1510.407344] ? save_trace+0x290/0x290 [ 1510.411152] ? __might_fault+0x104/0x1b0 [ 1510.415240] ? kvm_vcpu_release+0xa0/0xa0 [ 1510.419406] do_vfs_ioctl+0x75a/0xfe0 [ 1510.423222] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1510.428168] ? ioctl_preallocate+0x1a0/0x1a0 [ 1510.432612] ? security_file_ioctl+0x76/0xb0 [ 1510.437033] ? security_file_ioctl+0x83/0xb0 [ 1510.441462] SyS_ioctl+0x7f/0xb0 [ 1510.444846] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1510.448991] do_syscall_64+0x1d5/0x640 [ 1510.452899] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1510.458097] RIP: 0033:0x45c849 [ 1510.461381] RSP: 002b:00007f75f721bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1510.469127] RAX: ffffffffffffffda RBX: 00007f75f721c6d4 RCX: 000000000045c849 [ 1510.476411] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1510.483799] RBP: 000000000076c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1510.491079] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1510.498360] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076c0ec [ 1510.612051] warn_alloc_show_mem: 3 callbacks suppressed [ 1510.612055] Mem-Info: [ 1510.619890] active_anon:797077 inactive_anon:201 isolated_anon:0 [ 1510.619890] active_file:7240 inactive_file:6275 isolated_file:0 [ 1510.619890] unevictable:0 dirty:68 writeback:0 unstable:0 [ 1510.619890] slab_reclaimable:12738 slab_unreclaimable:129195 [ 1510.619890] mapped:59122 shmem:538 pagetables:16293 bounce:0 [ 1510.619890] free:551369 free_pcp:326 free_cma:0 07:19:50 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r5, r4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:19:50 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x4, &(0x7f0000000340)=[{&(0x7f00000002c0)="ff1ad5c98f13000000f37ff1e9c000000000e07c9a611a3f891c1876a868106f8416a673459619fdb0e2dff489c54f0977d1952642a7f73ff10b2311f930550645143afd5a5b24ec72f282f119d5c798457f92f0f6e01246b163eca0386f0323ca4cfd", 0x63, 0xf2d7}, {0x0, 0x0, 0x81}, {&(0x7f00000001c0)="fa7a2b9cccdfb0212fafac5f5239a86c9fc9950f681aba432a0734fae4124ee655fcade2ad665d5a94034e0afc3d2bcdcd500e575d8366fac1d25a50e4059a0c18f1d2ad1b01838ced179b88e9f7d55212c6dc0081063ed3f2f1e66c1c8330afb20c5b75c742bed6750c7fa98a3c16a125e2c5a3a8d94cb068ffbebf6355a97b3cebfbc541f05b71e13439424d539871ca153f0b6a01a7835d5ee8fd513615abfc416132fbb338372525829b4874a3f13df339147a79344707fa72a17f2ffc2fcf6bd18dcdd059ad931d63d00f0451826fafeb2b319171b354650111", 0xdc, 0x1}, {&(0x7f0000000000)="2e9d202c4ce7e88b2235ed3932be579d04c9e7900fc97449053d7c62abe2bde2f91912db1f8de1e88b3cde26cc7dec0ce1b18cc1a5e387b84a57df7a6647c1b58cc2204a24487d4f000000000000000226c6ab7b8af1684a222e09a087db3a566cac32d7600c16b61ebd3f4e785cfdd6a9d0a222", 0x74}], 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$VIDIOC_ENUM_FRAMESIZES(r3, 0xc02c564a, &(0x7f0000000080)={0x10001, 0x30314752, 0x3, @stepwise={0x6, 0x200, 0x0, 0x53, 0x81, 0x4}}) 07:19:50 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) socket$netlink(0x10, 0x3, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1510.899222] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:44kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208948kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1511.089822] Node 1 active_anon:1216924kB inactive_anon:24kB active_file:28916kB inactive_file:25108kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27432kB dirty:312kB writeback:0kB shmem:948kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1511.241573] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1511.336981] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1511.369802] Node 0 DMA32 free:32984kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:44kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:732kB local_pcp:108kB free_cma:0kB [ 1511.450537] lowmem_reserve[]: 0 0 0 0 0 [ 1511.454588] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1511.540108] lowmem_reserve[]: 0 0 0 0 0 [ 1511.544586] Node 1 Normal free:2159864kB min:53612kB low:67012kB high:80412kB active_anon:1216864kB inactive_anon:16kB active_file:28916kB inactive_file:25108kB unevictable:0kB writepending:356kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12320kB pagetables:28128kB bounce:0kB free_pcp:1224kB local_pcp:536kB free_cma:0kB [ 1511.640112] lowmem_reserve[]: 0 0 0 0 0 [ 1511.644163] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1511.708935] Node 0 DMA32: 232*4kB (UME) 1428*8kB (UME) 776*16kB (UMEH) 241*32kB (UMEH) 9*64kB (MEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 33056kB [ 1511.735763] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1511.752971] Node 1 Normal: 189*4kB (UME) 228*8kB (UME) 690*16kB (UME) 319*32kB (UME) 58*64kB (UM) 3*128kB (U) 5*256kB (U) 5*512kB (UME) 5*1024kB (UME) 5*2048kB (UE) 516*4096kB (UM) = 2160660kB [ 1511.789118] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1511.814365] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1511.888523] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1511.947829] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1512.006956] 14056 total pagecache pages [ 1512.017827] 0 pages in swap cache [ 1512.033962] Swap cache stats: add 0, delete 0, find 0/0 [ 1512.067233] Free swap = 0kB [ 1512.075596] Total swap = 0kB [ 1512.079499] 1965979 pages RAM [ 1512.087288] 0 pages HighMem/MovableOnly [ 1512.095691] 339049 pages reserved [ 1512.099324] 0 pages cma reserved 07:19:52 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x1) 07:19:52 executing program 3: r0 = creat(0x0, 0x0) close(0xffffffffffffffff) write$binfmt_script(0xffffffffffffffff, 0x0, 0x0) accept4(r0, 0x0, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) sendmsg$TIPC_CMD_SHOW_LINK_STATS(0xffffffffffffffff, 0x0, 0x0) dup(0xffffffffffffffff) clone(0x3a3dd400a400ab01, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$IPT_SO_SET_REPLACE(r1, 0x4000000000000, 0x40, &(0x7f0000000940)=@raw={'raw\x00', 0x2, 0x3, 0x260, 0xf0, 0xf0, 0xf0, 0x0, 0xf0, 0x1c8, 0x1c8, 0x1c8, 0x1c8, 0x1c8, 0x3, 0x0, {[{{@uncond=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4], 0x0, 0xd0, 0xf0, 0x0, {}, [@common=@unspec=@pkttype={{0x28, 'pkttype\x00'}}, @common=@unspec=@time={{0x38, 'time\x00'}}]}, @unspec=@NOTRACK={0x20, 'NOTRACK\x00'}}, {{@ip={@multicast2, @broadcast, 0x0, 0x0, 'ipvlan1\x00', 'bond_slave_0\x00'}, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x4c000000, 0x0, 'pptp\x00', 'syz1\x00'}}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x2c0) 07:19:52 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) writev(r0, &(0x7f0000000340)=[{&(0x7f00000001c0)="7b4ffb276065aba4150ace1d291a5861ef09bc5faa947f3eba9f1fb3f10a1700a5bf6889f34c52b536df2357a512a77a685d0b0e9f546d2bedae1584e50cd84ff3f4a072552498d7438f86f172a933bde526d131e7592d92f0ec129609ddde5b4df314d0248d5b12c92171ac56d977a975843ae014374a28bf45dfdbb0e6422e561109b4606ddfecf68cbe528fef2322809bfe42afd410d841edf22a9736aef89f5310ba6a08a406be0d6a493d7c4caabec9bfcf101b8708cca30854767b8929bc38d1bf8e5f05b7607b8e5a", 0xcc}, {&(0x7f0000000040)="a721d6e7ea1d30f7aaa0cc1c5c34b2eba18804f1e46a02a6485188f732395ce90c57263749e7dd9e2332a861e4b0e877aa2fc2053fcda690363158b0bac0676221e3474761625f8eabd660c5b01ab9de256e6f031560454030dd9c770616f340639de84a79bc904ebd9323ecd5183cc672aac252b40146fcf6ca84", 0x7b}, {&(0x7f0000000100)="3993825c0478dbc277393007a3c2e351e82c67346470668948853a5db60f308b4a908fbeed48a37a7c7940d25993986cdabac9", 0x33}, {&(0x7f00000002c0)="bbeb94e474fd25a86fdc2f00b73e3344ca88617a146590812901afb7a37a0bd37c060266b3258a7d6c84482068246ae6f19a8bf77f137e57afa8a102b1c875c689c8439623c58d0a0b531819a7677862c955", 0x52}], 0x4) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_INFO(0xffffffffffffffff, 0x81204101, &(0x7f0000000380)) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) 07:19:52 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x8000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) r4 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-control\x00', 0x12001, 0x0) r5 = socket$nl_generic(0x10, 0x3, 0x10) r6 = syz_genetlink_get_family_id$tipc(&(0x7f0000000240)='TIPC\x00') sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r5, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000340)={0x30, r6, 0x1, 0x0, 0x0, {{}, {}, {0x14, 0x19, {0xfffffbff, 0x0, 0xa56}}}}, 0x30}}, 0x0) sendmsg$TIPC_CMD_SET_LINK_WINDOW(r4, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0xc5c53fd928962df7}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x2c, r6, 0x300, 0x70bd2a, 0x25dfdbff, {{}, {}, {0x10, 0x18, {0x7, @bearer=@l2={'eth', 0x3a, 'wg1\x00'}}}}, [""]}, 0x2c}, 0x1, 0x0, 0x0, 0x20000000}, 0x8000) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:19:52 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) socket$netlink(0x10, 0x3, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:19:52 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) prctl$PR_GET_TSC(0x19, &(0x7f00000000c0)) fcntl$dupfd(r6, 0x0, r6) ioctl$EXT4_IOC_GROUP_ADD(r6, 0x40286608, &(0x7f0000000080)={0xff, 0x1cb, 0x9, 0x53, 0x4, 0x8001}) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r7 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) write$snddsp(0xffffffffffffffff, &(0x7f0000000200)="2e525172aa3a9290ff2a7c6285507378a539de791c4a5fd04c001bb6934243f4a7be616e963d87aa9c606e54e6ef4e6415fc8690191a6202947f617031da566d4f16ef8c77fbd9e3c32d80b4e58126ca50c3ebccfdc4d8d4643ca5da397de1686a0a8abbebc7c8514fbd8f3cce24a0e0a45363b715c5dabcbf65f581c4e6cc7450a4545976b094c018f1f61f12fd9c3550dfbb7e3a848f3b609e97185c16bd5c1ed73aebc8853b0441fa29", 0xab) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f00000002c0)=ANY=[@ANYBLOB="0066e5794d9eda7d06643247012400471f584de2acfe6885cd2f0738ffe65c3397126a63d20ce8bb5fc3cf3aeb412c3457c0a57096826ac213153ccd5a39490a57a37f607255f7585c195ae65bde3d0b9016c6499ee6c80525cb6b849d63dbf157c624a1b62e9460147f8546255a9df291544668c633163bda9671c4170b4a66627a385628fcadb30861869f62a5b3ff88db70a4723861111b79bc172f601c2af13eff5179c0a604645631d8550e669b5f566f4c9943af5307c2fa812bdaa24f0ee48bced91aded980a5cb15dd90c45f1040a5a752b9c636b458681168d9467028eba8b25aec9fd4803942fb9226ed4cef08f08e566e880a5f98a1fcb2d40b7d6e059222afc8df36f9c18a90f98dad92f864f125766c74cbfc8fa1460c"], 0x1) [ 1512.226148] xt_CT: netfilter: NOTRACK target is deprecated, use CT instead or upgrade iptables 07:19:52 executing program 3: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x11c000}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000080)) 07:19:52 executing program 2: socket$inet_icmp_raw(0x2, 0x3, 0x1) openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/load\x00', 0x2, 0x0) openat$selinux_load(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/load\x00', 0x2, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) [ 1512.458224] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) 07:19:52 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:19:52 executing program 3: r0 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000)='/dev/vcsa\x00', 0x2042, 0x0) writev(r0, &(0x7f0000000880)=[{&(0x7f0000000500)="cd9e64bb322a94e5492ae7f46ea4acc2a89c43c52d4052ffb9861060b5f786d5468a93968baca0e18b64ade59b78e845a25da58da5bc32a022f1fb6f2129cd5a84ebf91fbc6ff67a0101beedfd569fa97d282d5fe3fc77ab3ce1b42e2fe4a4bb5ebd597d19cd192203fdb176afd77b701d2d1627cc26603badc642d271a300"/141, 0x8d}, {&(0x7f0000000080)="2131c644f3f04caa1af161ab451585204cb56c0f", 0x14}, {&(0x7f00000005c0)="123fb785bf38c6e4f9845f647268dc9942a7affbe94bd01703098d995bdeffeadc5e3bc0443064050cae7b5d08d9f3ae7a6200f2148b82443600f701413a82409848de13ad7514dd74f861e20ff284008e1ac2f4f21375bf355f4de61b1244f0bed3059a7fc435f9080e2c55", 0x6c}, {&(0x7f0000000640)="4ac5fa147d0a48b0e1a231d2aaee008b8ec29071aafc6499b009fabf5609c2927bfc12a95a5785571e56a3ff6acd99f3a248f0511405d977a0857310a8e3757c621e11bf30bff713c4a7a77bfe8d59b501416c93526be6be1cdf2a7164212c93b4429f24123c7f1b9f9db27bb825b00fa1d3390f3d67e57edd06541f59748286b382dd6b1b7e9759070bbad855edd2d6993bbeef73db2eef5d13c98598e47ebd6e63db0eac37312a63a8c448a2de5fac17fe8f96e393279c7075b533342a6f2de7b1898fc94f2fb5979e20d85432f26b745760820ad6", 0xd6}, {&(0x7f0000000740)="d0", 0x1}], 0x5) [ 1512.517514] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1512.566889] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1512.569586] CPU: 1 PID: 25136 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1512.585507] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1512.594955] Call Trace: [ 1512.597554] dump_stack+0x13e/0x194 [ 1512.601199] warn_alloc.cold+0x96/0x1af [ 1512.605184] ? zone_watermark_ok_safe+0x280/0x280 [ 1512.610059] ? wait_for_completion+0x390/0x390 [ 1512.612398] syz-executor.0 cpuset= [ 1512.614653] __alloc_pages_slowpath+0x2114/0x26c0 [ 1512.614679] ? warn_alloc+0xf0/0xf0 [ 1512.620507] syz0 [ 1512.623047] ? find_held_lock+0x2d/0x110 [ 1512.629227] mems_allowed=0-1 [ 1512.632660] ? fs_reclaim_acquire+0x10/0x10 [ 1512.632682] __alloc_pages_nodemask+0x5d3/0x700 [ 1512.632694] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1512.632702] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1512.632712] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1512.659668] alloc_pages_current+0xe7/0x1e0 [ 1512.663991] kvm_mmu_create+0xd1/0x1c0 [ 1512.667873] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1512.672191] ? alloc_pages_current+0xef/0x1e0 [ 1512.676680] kvm_vcpu_init+0x26d/0x360 [ 1512.680578] vmx_create_vcpu+0xf3/0x2900 [ 1512.684666] ? __mutex_unlock_slowpath+0x75/0x780 [ 1512.689612] ? futex_wake+0x11c/0x3d0 [ 1512.693517] ? handle_rdmsr+0x6b0/0x6b0 [ 1512.697491] kvm_vm_ioctl+0x49c/0x1430 [ 1512.701399] ? __lock_acquire+0x5f7/0x4620 [ 1512.705626] ? kvm_vcpu_release+0xa0/0xa0 [ 1512.710719] ? trace_hardirqs_on+0x10/0x10 [ 1512.714945] ? trace_hardirqs_on+0x10/0x10 [ 1512.719174] ? save_trace+0x290/0x290 [ 1512.722959] ? __might_fault+0x104/0x1b0 [ 1512.727024] ? kvm_vcpu_release+0xa0/0xa0 [ 1512.731168] do_vfs_ioctl+0x75a/0xfe0 [ 1512.734963] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1512.739706] ? ioctl_preallocate+0x1a0/0x1a0 [ 1512.744105] ? security_file_ioctl+0x76/0xb0 [ 1512.748496] ? security_file_ioctl+0x83/0xb0 [ 1512.752913] SyS_ioctl+0x7f/0xb0 [ 1512.756275] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1512.760243] do_syscall_64+0x1d5/0x640 [ 1512.764120] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1512.769298] RIP: 0033:0x45c849 [ 1512.772472] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1512.780166] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1512.787435] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1512.794783] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1512.802046] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1512.809321] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1512.816602] CPU: 0 PID: 25156 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1512.824585] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1512.833947] Call Trace: [ 1512.836572] dump_stack+0x13e/0x194 [ 1512.840210] warn_alloc.cold+0x96/0x1af [ 1512.844194] ? zone_watermark_ok_safe+0x280/0x280 [ 1512.850201] ? wait_for_completion+0x390/0x390 [ 1512.854798] __alloc_pages_slowpath+0x2114/0x26c0 [ 1512.859663] ? warn_alloc+0xf0/0xf0 [ 1512.863300] ? find_held_lock+0x2d/0x110 [ 1512.867372] ? fs_reclaim_acquire+0x10/0x10 [ 1512.871715] __alloc_pages_nodemask+0x5d3/0x700 [ 1512.876390] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1512.881409] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1512.886259] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1512.891290] alloc_pages_current+0xe7/0x1e0 [ 1512.895625] kvm_mmu_create+0xd1/0x1c0 [ 1512.899528] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1512.903856] ? alloc_pages_current+0xef/0x1e0 [ 1512.908370] kvm_vcpu_init+0x26d/0x360 [ 1512.912272] vmx_create_vcpu+0xf3/0x2900 [ 1512.916347] ? __mutex_unlock_slowpath+0x75/0x780 [ 1512.921196] ? futex_wake+0x11c/0x3d0 [ 1512.925011] ? handle_rdmsr+0x6b0/0x6b0 [ 1512.928993] kvm_vm_ioctl+0x49c/0x1430 [ 1512.932923] ? __lock_acquire+0x5f7/0x4620 [ 1512.937163] ? kvm_vcpu_release+0xa0/0xa0 [ 1512.941325] ? trace_hardirqs_on+0x10/0x10 [ 1512.945574] ? trace_hardirqs_on+0x10/0x10 [ 1512.949820] ? save_trace+0x290/0x290 [ 1512.953632] ? __might_fault+0x104/0x1b0 [ 1512.957704] ? kvm_vcpu_release+0xa0/0xa0 [ 1512.961867] do_vfs_ioctl+0x75a/0xfe0 [ 1512.965682] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1512.970450] ? ioctl_preallocate+0x1a0/0x1a0 [ 1512.974877] ? security_file_ioctl+0x76/0xb0 [ 1512.979416] ? security_file_ioctl+0x83/0xb0 [ 1512.983836] SyS_ioctl+0x7f/0xb0 [ 1512.987212] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1512.991196] do_syscall_64+0x1d5/0x640 [ 1512.995093] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1513.000282] RIP: 0033:0x45c849 [ 1513.003470] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1513.011182] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 07:19:53 executing program 2: r0 = socket$inet(0x2, 0x2, 0xec13) getsockopt$EBT_SO_GET_INIT_INFO(r0, 0x0, 0x82, &(0x7f0000000040)={'filter\x00'}, &(0x7f0000000100)=0x78) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) sendmsg$NFT_MSG_GETOBJ_RESET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x2000}, 0xc, &(0x7f0000000280)={&(0x7f0000000240)={0x34, 0x15, 0xa, 0x201, 0x0, 0x0, {0xf4593a8f649fd985, 0x0, 0x7}, [@NFTA_OBJ_HANDLE={0xc, 0x6, 0x1, 0x0, 0x1}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x5}]}, 0x34}, 0x1, 0x0, 0x0, 0x8000}, 0x8080) [ 1513.018597] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1513.025873] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1513.033150] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1513.040422] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1513.088909] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1513.204508] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1513.249130] CPU: 1 PID: 25143 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1513.257054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1513.266412] Call Trace: [ 1513.269015] dump_stack+0x13e/0x194 [ 1513.272656] warn_alloc.cold+0x96/0x1af [ 1513.276643] ? zone_watermark_ok_safe+0x280/0x280 [ 1513.281500] ? wait_for_completion+0x390/0x390 [ 1513.286091] __alloc_pages_slowpath+0x2114/0x26c0 [ 1513.290953] ? warn_alloc+0xf0/0xf0 [ 1513.294586] ? find_held_lock+0x2d/0x110 [ 1513.298650] ? fs_reclaim_acquire+0x10/0x10 [ 1513.302992] __alloc_pages_nodemask+0x5d3/0x700 [ 1513.307668] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1513.312685] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1513.317534] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1513.322565] alloc_pages_current+0xe7/0x1e0 [ 1513.326895] kvm_mmu_create+0xd1/0x1c0 [ 1513.330789] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1513.335113] ? alloc_pages_current+0xef/0x1e0 [ 1513.339614] kvm_vcpu_init+0x26d/0x360 [ 1513.343507] vmx_create_vcpu+0xf3/0x2900 [ 1513.347575] ? __mutex_unlock_slowpath+0x75/0x780 [ 1513.352419] ? futex_wake+0x11c/0x3d0 [ 1513.356220] ? handle_rdmsr+0x6b0/0x6b0 [ 1513.360206] kvm_vm_ioctl+0x49c/0x1430 [ 1513.364097] ? __lock_acquire+0x5f7/0x4620 [ 1513.368332] ? kvm_vcpu_release+0xa0/0xa0 [ 1513.372475] ? trace_hardirqs_on+0x10/0x10 [ 1513.376711] ? trace_hardirqs_on+0x10/0x10 [ 1513.380933] ? save_trace+0x290/0x290 [ 1513.384722] ? __might_fault+0x104/0x1b0 [ 1513.388770] ? kvm_vcpu_release+0xa0/0xa0 [ 1513.392907] do_vfs_ioctl+0x75a/0xfe0 [ 1513.396706] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1513.401449] ? ioctl_preallocate+0x1a0/0x1a0 [ 1513.405932] ? security_file_ioctl+0x76/0xb0 [ 1513.410585] ? security_file_ioctl+0x83/0xb0 [ 1513.415022] SyS_ioctl+0x7f/0xb0 [ 1513.418415] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1513.422400] do_syscall_64+0x1d5/0x640 [ 1513.426290] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1513.431470] RIP: 0033:0x45c849 [ 1513.434665] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1513.442481] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 07:19:53 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket(0x10, 0x2, 0x0) ioctl(r1, 0x1000008912, &(0x7f0000000000)="080db5055e0bcfe847a071") getsockopt$bt_sco_SCO_CONNINFO(r1, 0x11, 0x2, &(0x7f0000000300)=""/124, 0x0) r2 = socket$nl_route(0x10, 0x3, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x2a9, &(0x7f0000000000)={&(0x7f0000000080)=ANY=[@ANYBLOB="4800000010000507000000000000c40000000000", @ANYRES32=r5, @ANYBLOB="000000000000000028001200090001007665746800000000180002001400010000000000", @ANYRES32=0x0, @ANYBLOB="0000b20000000000"], 0x48}}, 0x0) sendmsg$nl_route_sched(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="38000000240007050000004007a2a30005000000", @ANYRES32=r5, @ANYBLOB="00000000ffffffff000000000900010068667363000000000800020000000000"], 0x38}}, 0x0) sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=@newtfilter={0x48, 0x28, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {0x4}}, [@filter_kind_options=@f_rsvp6={{0xa, 0x1, 'rsvp6\x00'}, {0x18, 0x2, [@TCA_RSVP_DST={0x14, 0x2, @ipv4={[], [], @loopback}}]}}]}, 0x48}}, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0) [ 1513.449752] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1513.457030] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1513.464285] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1513.471540] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1513.479112] warn_alloc_show_mem: 3 callbacks suppressed [ 1513.479115] Mem-Info: [ 1513.487317] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1513.556081] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1513.565498] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1513.576619] active_anon:797104 inactive_anon:200 isolated_anon:0 [ 1513.576619] active_file:7230 inactive_file:6289 isolated_file:11 [ 1513.576619] unevictable:0 dirty:19 writeback:0 unstable:0 [ 1513.576619] slab_reclaimable:12737 slab_unreclaimable:129380 [ 1513.576619] mapped:59097 shmem:538 pagetables:16328 bounce:0 [ 1513.576619] free:551205 free_pcp:65 free_cma:0 [ 1513.632215] CPU: 0 PID: 25154 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1513.640135] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1513.640886] syz-executor.0 cpuset= [ 1513.649518] Call Trace: [ 1513.649525] syz0 [ 1513.653059] dump_stack+0x13e/0x194 [ 1513.661214] warn_alloc.cold+0x96/0x1af [ 1513.665189] ? zone_watermark_ok_safe+0x280/0x280 [ 1513.670038] ? wait_for_completion+0x390/0x390 [ 1513.674628] __alloc_pages_slowpath+0x2114/0x26c0 [ 1513.679484] ? warn_alloc+0xf0/0xf0 [ 1513.683117] ? find_held_lock+0x2d/0x110 [ 1513.687179] ? fs_reclaim_acquire+0x10/0x10 [ 1513.691517] __alloc_pages_nodemask+0x5d3/0x700 [ 1513.696244] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1513.700674] mems_allowed=0-1 [ 1513.701287] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1513.709203] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1513.714227] alloc_pages_current+0xe7/0x1e0 [ 1513.718556] kvm_mmu_create+0xd1/0x1c0 [ 1513.722450] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1513.726770] ? alloc_pages_current+0xef/0x1e0 [ 1513.731265] kvm_vcpu_init+0x26d/0x360 [ 1513.735148] vmx_create_vcpu+0xf3/0x2900 [ 1513.739286] ? __mutex_unlock_slowpath+0x75/0x780 [ 1513.744121] ? futex_wake+0x11c/0x3d0 [ 1513.747930] ? handle_rdmsr+0x6b0/0x6b0 [ 1513.751941] kvm_vm_ioctl+0x49c/0x1430 [ 1513.755833] ? __lock_acquire+0x5f7/0x4620 [ 1513.760072] ? kvm_vcpu_release+0xa0/0xa0 [ 1513.764223] ? trace_hardirqs_on+0x10/0x10 [ 1513.768467] ? trace_hardirqs_on+0x10/0x10 [ 1513.772708] ? save_trace+0x290/0x290 [ 1513.776528] ? __might_fault+0x104/0x1b0 [ 1513.782069] ? kvm_vcpu_release+0xa0/0xa0 [ 1513.786224] do_vfs_ioctl+0x75a/0xfe0 [ 1513.790022] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1513.794769] ? ioctl_preallocate+0x1a0/0x1a0 [ 1513.799173] ? security_file_ioctl+0x76/0xb0 [ 1513.803583] ? security_file_ioctl+0x83/0xb0 [ 1513.808012] SyS_ioctl+0x7f/0xb0 [ 1513.811376] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1513.815352] do_syscall_64+0x1d5/0x640 [ 1513.819245] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1513.824433] RIP: 0033:0x45c849 [ 1513.827611] RSP: 002b:00007f4840a2ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1513.835307] RAX: ffffffffffffffda RBX: 00007f4840a2f6d4 RCX: 000000000045c849 [ 1513.842584] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1513.850203] RBP: 000000000076bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 1513.857465] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1513.864725] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bfac [ 1513.880907] CPU: 1 PID: 25161 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1513.888833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1513.898196] Call Trace: [ 1513.900791] dump_stack+0x13e/0x194 [ 1513.904427] warn_alloc.cold+0x96/0x1af [ 1513.908408] ? zone_watermark_ok_safe+0x280/0x280 [ 1513.913268] ? wait_for_completion+0x390/0x390 [ 1513.917862] __alloc_pages_slowpath+0x2114/0x26c0 [ 1513.918655] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:0kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):44kB mapped:208948kB dirty:0kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1513.922720] ? warn_alloc+0xf0/0xf0 [ 1513.922731] ? find_held_lock+0x2d/0x110 [ 1513.922742] ? fs_reclaim_acquire+0x10/0x10 [ 1513.922763] __alloc_pages_nodemask+0x5d3/0x700 [ 1513.967259] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1513.972292] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1513.977141] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1513.982173] alloc_pages_current+0xe7/0x1e0 [ 1513.986504] kvm_mmu_create+0xd1/0x1c0 [ 1513.990404] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1513.990916] Node 1 active_anon:1217356kB inactive_anon:16kB active_file:28920kB inactive_file:25148kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27340kB dirty:76kB writeback:0kB shmem:948kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1513.994720] ? alloc_pages_current+0xef/0x1e0 [ 1513.994735] kvm_vcpu_init+0x26d/0x360 [ 1513.994748] vmx_create_vcpu+0xf3/0x2900 [ 1513.994764] ? __mutex_unlock_slowpath+0x75/0x780 [ 1514.039609] ? futex_wake+0x11c/0x3d0 [ 1514.043486] ? handle_rdmsr+0x6b0/0x6b0 [ 1514.047470] kvm_vm_ioctl+0x49c/0x1430 [ 1514.051349] ? __lock_acquire+0x5f7/0x4620 [ 1514.055568] ? kvm_vcpu_release+0xa0/0xa0 [ 1514.059720] ? trace_hardirqs_on+0x10/0x10 [ 1514.063946] ? trace_hardirqs_on+0x10/0x10 [ 1514.068170] ? save_trace+0x290/0x290 [ 1514.071955] ? __might_fault+0x104/0x1b0 [ 1514.076701] ? kvm_vcpu_release+0xa0/0xa0 [ 1514.080837] do_vfs_ioctl+0x75a/0xfe0 [ 1514.084625] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1514.089373] ? ioctl_preallocate+0x1a0/0x1a0 [ 1514.093788] ? security_file_ioctl+0x76/0xb0 [ 1514.098185] ? security_file_ioctl+0x83/0xb0 [ 1514.102586] SyS_ioctl+0x7f/0xb0 [ 1514.105933] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1514.110068] do_syscall_64+0x1d5/0x640 [ 1514.113969] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1514.119159] RIP: 0033:0x45c849 [ 1514.122357] RSP: 002b:00007f75f725dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1514.130053] RAX: ffffffffffffffda RBX: 00007f75f725e6d4 RCX: 000000000045c849 [ 1514.137312] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1514.144581] RBP: 000000000076bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 1514.151833] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1514.159089] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bfac [ 1514.166975] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1514.248515] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1514.261130] Node 0 DMA32 free:33952kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:40kB inactive_file:8kB unevictable:0kB writepending:0kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:64kB local_pcp:0kB free_cma:0kB [ 1514.324552] lowmem_reserve[]: 0 0 0 0 0 [ 1514.328999] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1514.373661] lowmem_reserve[]: 0 0 0 0 0 [ 1514.378043] Node 1 Normal free:2157576kB min:53612kB low:67012kB high:80412kB active_anon:1217280kB inactive_anon:16kB active_file:28920kB inactive_file:25184kB unevictable:0kB writepending:16kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12576kB pagetables:28316kB bounce:0kB free_pcp:1224kB local_pcp:668kB free_cma:0kB [ 1514.482373] lowmem_reserve[]: 0 0 0 0 0 [ 1514.486930] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1514.513318] Node 0 DMA32: 514*4kB (UME) 1423*8kB (UME) 778*16kB (UMEH) 238*32kB (UMEH) 7*64kB (MEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 33952kB [ 1514.540275] warn_alloc_show_mem: 1 callbacks suppressed [ 1514.540278] Mem-Info: [ 1514.548117] active_anon:797085 inactive_anon:200 isolated_anon:0 [ 1514.548117] active_file:7240 inactive_file:6298 isolated_file:1 [ 1514.548117] unevictable:0 dirty:31 writeback:0 unstable:0 [ 1514.548117] slab_reclaimable:12752 slab_unreclaimable:130059 [ 1514.548117] mapped:59096 shmem:538 pagetables:16295 bounce:0 [ 1514.548117] free:550491 free_pcp:358 free_cma:0 [ 1514.601535] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1514.629622] Node 1 Normal: 49*4kB (UME) 261*8kB (UME) 640*16kB (UME) 341*32kB (UM) 61*64kB (UE) 2*128kB (UE) 3*256kB (UE) 4*512kB (UM) 5*1024kB (UME) 5*2048kB (UE) 516*4096kB (UM) = 2159308kB [ 1514.670450] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1514.679336] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1514.688476] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:40kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):4kB mapped:208944kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1514.746600] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1514.781766] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1514.804470] Node 1 active_anon:1217280kB inactive_anon:16kB active_file:28920kB inactive_file:25184kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27340kB dirty:120kB writeback:0kB shmem:948kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1514.841352] 14077 total pagecache pages [ 1514.862917] 0 pages in swap cache [ 1514.870223] Swap cache stats: add 0, delete 0, find 0/0 [ 1514.891630] Free swap = 0kB [ 1514.898103] Total swap = 0kB [ 1514.916953] 1965979 pages RAM [ 1514.929296] 0 pages HighMem/MovableOnly [ 1514.934774] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1514.972159] 339049 pages reserved [ 1514.982438] 0 pages cma reserved [ 1515.054658] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1515.074665] Node 0 DMA32 free:33952kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:40kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:128kB local_pcp:4kB free_cma:0kB 07:19:55 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) ioctl$SIOCGSTAMPNS(0xffffffffffffffff, 0x8907, &(0x7f00000001c0)) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r5, 0x28, 0x1, &(0x7f0000000180)=0x5, 0x8) r6 = fcntl$dupfd(r3, 0x0, r3) getpeername$tipc(r6, &(0x7f0000000100)=@id, &(0x7f0000000140)=0x10) openat$dlm_control(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/dlm-control\x00', 0x40, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x409a) setsockopt$bt_hci_HCI_FILTER(r6, 0x0, 0x2, &(0x7f0000000080)={0x9, [0x1, 0xbf2], 0x4}, 0x10) 07:19:55 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:19:55 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r0, 0x0, 0x10b, 0x200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10) perf_event_open(&(0x7f0000000140)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) sendto$inet(r0, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0x240, 0x0, 0xa) 07:19:55 executing program 2: socket$inet_icmp_raw(0x2, 0x3, 0x1) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) 07:19:55 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = syz_genetlink_get_family_id$ipvs(&(0x7f00000000c0)='IPVS\x00') sendmsg$IPVS_CMD_FLUSH(r4, &(0x7f0000000280)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="26a30f92863722", @ANYRES16=r5, @ANYBLOB="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"], 0x130}, 0x1, 0x0, 0x0, 0x75118a5afc3a760e}, 0x801) setsockopt$nfc_llcp_NFC_LLCP_MIUX(0xffffffffffffffff, 0x118, 0x1, &(0x7f0000000100)=0x1, 0x4) ioctl$SNDRV_PCM_IOCTL_USER_PVERSION(r4, 0x40044104, &(0x7f00000002c0)=0x5) ioctl$KVM_RUN(r2, 0xae80, 0x0) r6 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r6, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$inet6_mtu(0xffffffffffffffff, 0x29, 0x17, &(0x7f0000001bc0)=0x2, 0x4) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) [ 1515.186607] lowmem_reserve[]: 0 0 0 0 0 [ 1515.236355] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1515.437097] lowmem_reserve[]: 0 0 0 0 0 [ 1515.463211] Node 1 Normal free:2156228kB min:53612kB low:67012kB high:80412kB active_anon:1217352kB inactive_anon:16kB active_file:28924kB inactive_file:25208kB unevictable:0kB writepending:304kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12576kB pagetables:28452kB bounce:0kB free_pcp:952kB local_pcp:416kB free_cma:0kB [ 1515.575263] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1515.596486] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1515.616441] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1515.643183] CPU: 0 PID: 25222 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1515.651099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1515.653100] syz-executor.0 cpuset= [ 1515.660454] Call Trace: [ 1515.660475] dump_stack+0x13e/0x194 [ 1515.660490] warn_alloc.cold+0x96/0x1af [ 1515.660500] ? zone_watermark_ok_safe+0x280/0x280 [ 1515.660518] ? wait_for_completion+0x390/0x390 [ 1515.660531] __alloc_pages_slowpath+0x2114/0x26c0 [ 1515.660552] ? warn_alloc+0xf0/0xf0 [ 1515.660561] ? find_held_lock+0x2d/0x110 [ 1515.660571] ? fs_reclaim_acquire+0x10/0x10 [ 1515.660589] __alloc_pages_nodemask+0x5d3/0x700 [ 1515.683850] syz0 [ 1515.688524] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1515.712154] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1515.713193] mems_allowed=0-1 [ 1515.716999] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1515.717022] alloc_pages_current+0xe7/0x1e0 [ 1515.717036] kvm_mmu_create+0xd1/0x1c0 [ 1515.717050] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1515.737670] ? alloc_pages_current+0xef/0x1e0 [ 1515.742180] kvm_vcpu_init+0x26d/0x360 [ 1515.746072] vmx_create_vcpu+0xf3/0x2900 [ 1515.750144] ? __mutex_unlock_slowpath+0x75/0x780 [ 1515.754992] ? futex_wake+0x11c/0x3d0 [ 1515.758806] ? handle_rdmsr+0x6b0/0x6b0 [ 1515.762781] kvm_vm_ioctl+0x49c/0x1430 [ 1515.766666] ? __lock_acquire+0x5f7/0x4620 [ 1515.770901] ? kvm_vcpu_release+0xa0/0xa0 [ 1515.775053] ? trace_hardirqs_on+0x10/0x10 [ 1515.779295] ? trace_hardirqs_on+0x10/0x10 [ 1515.783532] ? save_trace+0x290/0x290 [ 1515.787326] ? __might_fault+0x104/0x1b0 [ 1515.791390] ? kvm_vcpu_release+0xa0/0xa0 [ 1515.795545] do_vfs_ioctl+0x75a/0xfe0 [ 1515.799352] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1515.804118] ? ioctl_preallocate+0x1a0/0x1a0 [ 1515.808549] ? security_file_ioctl+0x76/0xb0 [ 1515.812970] ? security_file_ioctl+0x83/0xb0 [ 1515.817380] SyS_ioctl+0x7f/0xb0 [ 1515.820753] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1515.824736] do_syscall_64+0x1d5/0x640 [ 1515.828633] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1515.833823] RIP: 0033:0x45c849 [ 1515.837010] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1515.844720] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1515.851999] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1515.859274] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1515.866550] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1515.873942] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1515.886309] lowmem_reserve[]: 0 0 0 0 0 [ 1515.898407] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1515.905120] CPU: 1 PID: 25224 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1515.921246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1515.930605] Call Trace: [ 1515.933205] dump_stack+0x13e/0x194 [ 1515.935195] Node 0 [ 1515.936949] warn_alloc.cold+0x96/0x1af [ 1515.936961] ? zone_watermark_ok_safe+0x280/0x280 [ 1515.937051] ? wait_for_completion+0x390/0x390 [ 1515.942040] DMA32: [ 1515.943266] __alloc_pages_slowpath+0x2114/0x26c0 [ 1515.943291] ? warn_alloc+0xf0/0xf0 [ 1515.943304] ? find_held_lock+0x2d/0x110 [ 1515.949632] 538*4kB [ 1515.952803] ? fs_reclaim_acquire+0x10/0x10 [ 1515.952822] __alloc_pages_nodemask+0x5d3/0x700 [ 1515.952836] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1515.952845] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1515.952855] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1515.952874] alloc_pages_current+0xe7/0x1e0 [ 1515.959707] (UME) [ 1515.959933] kvm_mmu_create+0xd1/0x1c0 [ 1515.959946] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1515.968066] 1418*8kB [ 1515.969916] ? alloc_pages_current+0xef/0x1e0 [ 1515.969931] kvm_vcpu_init+0x26d/0x360 [ 1515.969942] vmx_create_vcpu+0xf3/0x2900 [ 1515.969957] ? __mutex_unlock_slowpath+0x75/0x780 [ 1515.981930] (UME) [ 1515.983938] ? futex_wake+0x11c/0x3d0 [ 1515.983951] ? handle_rdmsr+0x6b0/0x6b0 [ 1515.983968] kvm_vm_ioctl+0x49c/0x1430 [ 1515.991581] 778*16kB [ 1515.993810] ? __lock_acquire+0x5f7/0x4620 [ 1515.993824] ? kvm_vcpu_release+0xa0/0xa0 [ 1515.993837] ? trace_hardirqs_on+0x10/0x10 [ 1516.001543] (UMEH) [ 1516.004187] ? trace_hardirqs_on+0x10/0x10 [ 1516.004203] ? save_trace+0x290/0x290 [ 1516.004214] ? __might_fault+0x104/0x1b0 [ 1516.004231] ? kvm_vcpu_release+0xa0/0xa0 [ 1516.012065] 237*32kB [ 1516.015446] do_vfs_ioctl+0x75a/0xfe0 [ 1516.015460] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1516.015470] ? ioctl_preallocate+0x1a0/0x1a0 [ 1516.015488] ? security_file_ioctl+0x76/0xb0 [ 1516.023995] (UME) [ 1516.028378] ? security_file_ioctl+0x83/0xb0 [ 1516.028393] SyS_ioctl+0x7f/0xb0 [ 1516.028404] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1516.028417] do_syscall_64+0x1d5/0x640 [ 1516.028433] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1516.039695] 7*64kB [ 1516.042194] RIP: 0033:0x45c849 [ 1516.042199] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1516.042208] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1516.042213] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1516.042218] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1516.042223] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1516.042229] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1516.172962] (MEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 33976kB [ 1516.182742] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1516.208547] Node 1 Normal: 16*4kB (U) 70*8kB (UME) 304*16kB (UME) 354*32kB (UE) 63*64kB (UME) 10*128kB (UM) 7*256kB (UME) 2*512kB (U) 5*1024kB (UME) 5*2048kB (UE) 516*4096kB (UM) = 2153840kB [ 1516.296789] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1516.326132] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1516.357309] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1516.371075] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1516.379960] 14089 total pagecache pages [ 1516.392534] 0 pages in swap cache [ 1516.398758] warn_alloc_show_mem: 2 callbacks suppressed [ 1516.398761] Mem-Info: [ 1516.413482] Swap cache stats: add 0, delete 0, find 0/0 [ 1516.445623] active_anon:797083 inactive_anon:201 isolated_anon:0 [ 1516.445623] active_file:7237 inactive_file:6309 isolated_file:5 [ 1516.445623] unevictable:0 dirty:15 writeback:0 unstable:0 [ 1516.445623] slab_reclaimable:12778 slab_unreclaimable:130979 [ 1516.445623] mapped:59072 shmem:539 pagetables:16318 bounce:0 [ 1516.445623] free:549603 free_pcp:230 free_cma:0 [ 1516.487074] Free swap = 0kB [ 1516.490434] Total swap = 0kB [ 1516.493744] 1965979 pages RAM [ 1516.497166] 0 pages HighMem/MovableOnly [ 1516.507345] 339049 pages reserved [ 1516.514983] 0 pages cma reserved 07:19:56 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) link(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00') ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:19:56 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = fcntl$dupfd(r1, 0x406, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$ifreq_SIOCGIFINDEX_team(r4, 0x8933, &(0x7f0000000040)={'team0\x00'}) r5 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x4001fe) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r6, 0x0, r6) fcntl$F_GET_RW_HINT(r6, 0x40b, &(0x7f0000000080)) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) r8 = fcntl$dupfd(r7, 0x0, r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) ioctl$EVIOCGKEY(r8, 0x80404518, &(0x7f00000001c0)=""/111) 07:19:56 executing program 3: syz_mount_image$vfat(&(0x7f0000000040)='vfat\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000001100)={[{@utf8no='utf8=0'}]}) 07:19:56 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) ioctl(0xffffffffffffffff, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1516.578128] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:24kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):20kB mapped:208944kB dirty:0kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1516.623077] FAT-fs (loop3): bogus number of reserved sectors [ 1516.668943] FAT-fs (loop3): Can't find a valid FAT filesystem 07:19:56 executing program 3: r0 = socket$nl_route(0x10, 0x3, 0x0) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = dup(r1) sendmsg$NLBL_MGMT_C_LISTALL(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)={0x14, 0x0, 0x3567470785e10c7f}, 0x14}}, 0x0) getsockname$packet(r2, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @random}, &(0x7f0000000140)=0x14) sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newtaction={0x50, 0x30, 0xfbfb, 0x0, 0x0, {0x0, 0x0, 0x1300}, [{0x3c, 0x1, [@m_mirred={0x38, 0x1, 0x0, 0x0, {{0xb, 0x1, 'mirred\x00'}, {0x24, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x2, {{}, 0x3, r3}}]}, {0x4}}}]}]}, 0x50}}, 0x0) [ 1516.816167] Node 1 active_anon:1217472kB inactive_anon:20kB active_file:28924kB inactive_file:25232kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27444kB dirty:60kB writeback:0kB shmem:952kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1516.854604] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1516.900470] lowmem_reserve[]: 0 2557 2557 2557 2557 07:19:57 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) getsockopt$TIPC_SRC_DROPPABLE(0xffffffffffffffff, 0x10f, 0x80, &(0x7f0000000180), &(0x7f00000001c0)=0x4) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$VIDIOC_S_EXT_CTRLS(r4, 0xc0205648, &(0x7f0000000100)={0xa30000, 0x2, 0x7, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x990af5, 0xb0, [], @string=&(0x7f0000000080)=0x8}}) ioctl$KVM_X86_SETUP_MCE(r5, 0x4008ae9c, &(0x7f0000000140)={0x7, 0x0, 0x78}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r6 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r6, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:19:57 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1516.905809] Node 0 DMA32 free:33976kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:24kB inactive_file:4kB unevictable:0kB writepending:0kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:100kB local_pcp:0kB free_cma:0kB [ 1517.045680] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1517.105652] lowmem_reserve[]: 0 0 0 0 0 [ 1517.127501] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1517.137575] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1517.155176] CPU: 1 PID: 25261 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1517.171050] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1517.180541] Call Trace: [ 1517.183148] dump_stack+0x13e/0x194 [ 1517.186807] warn_alloc.cold+0x96/0x1af [ 1517.190802] ? zone_watermark_ok_safe+0x280/0x280 [ 1517.195679] ? wait_for_completion+0x390/0x390 [ 1517.200289] __alloc_pages_slowpath+0x2114/0x26c0 [ 1517.205331] ? warn_alloc+0xf0/0xf0 [ 1517.208987] ? find_held_lock+0x2d/0x110 [ 1517.213080] ? fs_reclaim_acquire+0x10/0x10 [ 1517.217434] __alloc_pages_nodemask+0x5d3/0x700 [ 1517.222138] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1517.227173] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1517.232060] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1517.237102] alloc_pages_current+0xe7/0x1e0 [ 1517.241453] kvm_mmu_create+0xd1/0x1c0 [ 1517.245560] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1517.250051] ? alloc_pages_current+0xef/0x1e0 [ 1517.254573] kvm_vcpu_init+0x26d/0x360 [ 1517.258654] vmx_create_vcpu+0xf3/0x2900 [ 1517.262947] ? __mutex_unlock_slowpath+0x75/0x780 [ 1517.263462] lowmem_reserve[]: [ 1517.267804] ? futex_wake+0x11c/0x3d0 [ 1517.267817] ? handle_rdmsr+0x6b0/0x6b0 [ 1517.267836] kvm_vm_ioctl+0x49c/0x1430 [ 1517.267851] ? __lock_acquire+0x5f7/0x4620 [ 1517.267860] ? kvm_vcpu_release+0xa0/0xa0 [ 1517.267872] ? trace_hardirqs_on+0x10/0x10 [ 1517.291555] 0 [ 1517.295247] ? trace_hardirqs_on+0x10/0x10 [ 1517.295263] ? save_trace+0x290/0x290 [ 1517.295274] ? __might_fault+0x104/0x1b0 [ 1517.295291] ? kvm_vcpu_release+0xa0/0xa0 [ 1517.303616] 0 [ 1517.305127] do_vfs_ioctl+0x75a/0xfe0 [ 1517.305141] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1517.305154] ? ioctl_preallocate+0x1a0/0x1a0 [ 1517.305173] ? security_file_ioctl+0x76/0xb0 [ 1517.311290] 0 [ 1517.313559] ? security_file_ioctl+0x83/0xb0 [ 1517.313574] SyS_ioctl+0x7f/0xb0 [ 1517.313584] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1517.313597] do_syscall_64+0x1d5/0x640 [ 1517.313611] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1517.313621] RIP: 0033:0x45c849 [ 1517.333377] 0 [ 1517.334520] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1517.334532] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1517.334538] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1517.334543] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1517.334549] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1517.334555] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1517.503853] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1517.548626] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1517.566860] CPU: 0 PID: 25278 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1517.575180] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1517.584853] Call Trace: [ 1517.587509] dump_stack+0x13e/0x194 [ 1517.591161] warn_alloc.cold+0x96/0x1af [ 1517.595154] ? zone_watermark_ok_safe+0x280/0x280 [ 1517.600020] ? wait_for_completion+0x390/0x390 [ 1517.604615] __alloc_pages_slowpath+0x2114/0x26c0 [ 1517.609569] ? warn_alloc+0xf0/0xf0 [ 1517.613213] ? find_held_lock+0x2d/0x110 [ 1517.617294] ? fs_reclaim_acquire+0x10/0x10 [ 1517.621665] __alloc_pages_nodemask+0x5d3/0x700 [ 1517.626349] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1517.631377] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1517.636238] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1517.641286] alloc_pages_current+0xe7/0x1e0 [ 1517.645625] kvm_mmu_create+0xd1/0x1c0 [ 1517.649532] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1517.653867] ? alloc_pages_current+0xef/0x1e0 [ 1517.658375] kvm_vcpu_init+0x26d/0x360 [ 1517.662280] vmx_create_vcpu+0xf3/0x2900 [ 1517.667747] ? __mutex_unlock_slowpath+0x75/0x780 [ 1517.672605] ? futex_wake+0x11c/0x3d0 [ 1517.676420] ? handle_rdmsr+0x6b0/0x6b0 [ 1517.680420] kvm_vm_ioctl+0x49c/0x1430 [ 1517.685201] ? __lock_acquire+0x5f7/0x4620 [ 1517.689449] ? kvm_vcpu_release+0xa0/0xa0 [ 1517.693608] ? trace_hardirqs_on+0x10/0x10 [ 1517.698050] ? trace_hardirqs_on+0x10/0x10 [ 1517.702517] ? save_trace+0x290/0x290 [ 1517.706510] ? __might_fault+0x104/0x1b0 [ 1517.710669] ? kvm_vcpu_release+0xa0/0xa0 [ 1517.714834] do_vfs_ioctl+0x75a/0xfe0 [ 1517.718646] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1517.723645] ? ioctl_preallocate+0x1a0/0x1a0 [ 1517.728083] ? security_file_ioctl+0x76/0xb0 [ 1517.732507] ? security_file_ioctl+0x83/0xb0 [ 1517.737118] SyS_ioctl+0x7f/0xb0 [ 1517.740500] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1517.744488] do_syscall_64+0x1d5/0x640 [ 1517.748409] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1517.753605] RIP: 0033:0x45c849 [ 1517.756799] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1517.765225] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1517.772504] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1517.779780] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1517.787059] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1517.794349] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1517.897951] 0 [ 1517.904679] Node 1 Normal free:2153976kB min:53612kB low:67012kB high:80412kB active_anon:1217356kB inactive_anon:16kB active_file:28928kB inactive_file:25252kB unevictable:0kB writepending:156kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12480kB pagetables:28524kB bounce:0kB free_pcp:1204kB local_pcp:608kB free_cma:0kB [ 1517.949719] warn_alloc_show_mem: 1 callbacks suppressed [ 1517.949724] Mem-Info: [ 1517.983337] active_anon:797104 inactive_anon:200 isolated_anon:0 [ 1517.983337] active_file:7242 inactive_file:6315 isolated_file:0 [ 1517.983337] unevictable:0 dirty:42 writeback:0 unstable:0 [ 1517.983337] slab_reclaimable:12784 slab_unreclaimable:131026 [ 1517.983337] mapped:59105 shmem:539 pagetables:16347 bounce:0 [ 1517.983337] free:549376 free_pcp:354 free_cma:0 [ 1518.040857] lowmem_reserve[]: 0 0 0 0 0 [ 1518.048306] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1518.068408] Node 0 DMA32: 476*4kB (UME) 1415*8kB (UMEH) 779*16kB (UMEH) 238*32kB (UMEH) 6*64kB (ME) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 33688kB [ 1518.088658] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:40kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208944kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1518.145373] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1518.162449] Node 1 Normal: 59*4kB (UME) 97*8kB (UME) 243*16kB (UME) 358*32kB (UME) 63*64kB (UME) 3*128kB (UM) 6*256kB (UE) 2*512kB (U) 5*1024kB (UME) 5*2048kB (UE) 516*4096kB (UM) = 2152228kB [ 1518.201128] Node 1 active_anon:1217304kB inactive_anon:16kB active_file:28928kB inactive_file:25280kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27344kB dirty:152kB writeback:0kB shmem:952kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1518.272899] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1518.287619] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1518.298657] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1518.346090] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1518.363919] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1518.376634] 14102 total pagecache pages [ 1518.382945] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1518.388433] 0 pages in swap cache [ 1518.396723] Node 0 DMA32 free:33688kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:40kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:88kB local_pcp:36kB free_cma:0kB [ 1518.447520] Swap cache stats: add 0, delete 0, find 0/0 [ 1518.457264] Free swap = 0kB [ 1518.463375] Total swap = 0kB [ 1518.468185] 1965979 pages RAM [ 1518.476048] 0 pages HighMem/MovableOnly [ 1518.497597] 339049 pages reserved [ 1518.526182] 0 pages cma reserved [ 1518.560231] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured! [ 1518.577950] lowmem_reserve[]: 0 0 0 0 0 07:19:58 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) ioctl$EXT4_IOC_SWAP_BOOT(r2, 0x6611) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB="be"], 0x1) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) getsockopt$netrom_NETROM_T2(r4, 0x103, 0x2, &(0x7f0000000080)=0x1, &(0x7f00000000c0)=0x4) 07:19:58 executing program 3: creat(0x0, 0x0) write$binfmt_script(0xffffffffffffffff, 0x0, 0x0) accept4(0xffffffffffffffff, &(0x7f0000000340)=@xdp, 0x0, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x3a3dd400a400ab01, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$IPT_SO_SET_REPLACE(r2, 0x4000000000000, 0x40, &(0x7f0000000940)=@raw={'raw\x00', 0x2, 0x3, 0x260, 0xf0, 0xf0, 0xf0, 0x0, 0xf0, 0x1c8, 0x1c8, 0x1c8, 0x1c8, 0x1c8, 0x3, 0x0, {[{{@uncond=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4], 0x0, 0xd0, 0xf0, 0x0, {}, [@common=@unspec=@pkttype={{0x28, 'pkttype\x00'}}, @common=@unspec=@time={{0x38, 'time\x00'}}]}, @unspec=@NOTRACK={0x20, 'NOTRACK\x00'}}, {{@ip={@multicast2, @broadcast, 0x0, 0x0, 'ipvlan1\x00', 'bond_slave_0\x00'}, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x4c000000, 0x0, 'pptp\x00', 'syz1\x00'}}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x2c0) 07:19:58 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1518.601640] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1518.687568] lowmem_reserve[]: 0 0 0 0 0 [ 1518.719929] Node 1 Normal free:2151012kB min:53612kB low:67012kB high:80412kB active_anon:1217204kB inactive_anon:16kB active_file:28928kB inactive_file:25280kB unevictable:0kB writepending:152kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12672kB pagetables:28556kB bounce:0kB free_pcp:592kB local_pcp:308kB free_cma:0kB 07:19:58 executing program 3: r0 = socket$unix(0x1, 0x2, 0x0) r1 = socket$unix(0x1, 0x1, 0x0) r2 = dup2(r1, r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) syz_emit_ethernet(0x7e, &(0x7f00000000c0)={@local, @remote, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x70, 0x0, 0x0, 0x0, 0x1, 0x0, @rand_addr=0x401, @local}, @source_quench={0xb, 0x0, 0x0, 0x2c00, {0x15, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, @multicast2, @broadcast, {[@timestamp_prespec={0x44, 0x3c, 0x0, 0x3, 0x0, [{@loopback}, {}, {@local}, {@multicast1}, {@loopback}, {@multicast2}, {@remote}]}, @noop]}}}}}}}, 0x0) 07:19:58 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x40, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b75fb3488fd8015bba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377aba09e7b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047706865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) [ 1518.962403] lowmem_reserve[]: 0 0 0 0 0 [ 1518.996618] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1519.047846] Node 0 DMA32: 383*4kB (UME) 1412*8kB (UME) 779*16kB (UMEH) 238*32kB (UMEH) 6*64kB (ME) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 33292kB [ 1519.153921] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1519.197991] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1519.216677] Node 1 Normal: 22*4kB (UE) 261*8kB (UME) 102*16kB (UE) 350*32kB (UME) 65*64kB (UE) 9*128kB (UM) 2*256kB (UE) 2*512kB (U) 5*1024kB (UME) 5*2048kB (UE) 516*4096kB (UM) = 2150752kB [ 1519.266708] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1519.285353] CPU: 0 PID: 25331 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1519.293533] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1519.302906] Call Trace: [ 1519.305520] dump_stack+0x13e/0x194 [ 1519.309299] warn_alloc.cold+0x96/0x1af [ 1519.313313] ? zone_watermark_ok_safe+0x280/0x280 [ 1519.318269] ? wait_for_completion+0x390/0x390 [ 1519.322874] __alloc_pages_slowpath+0x2114/0x26c0 [ 1519.327751] ? warn_alloc+0xf0/0xf0 [ 1519.331393] ? find_held_lock+0x2d/0x110 [ 1519.335471] ? fs_reclaim_acquire+0x10/0x10 [ 1519.339820] __alloc_pages_nodemask+0x5d3/0x700 [ 1519.344527] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1519.349558] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1519.354562] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1519.359606] alloc_pages_current+0xe7/0x1e0 [ 1519.364216] kvm_mmu_create+0xd1/0x1c0 [ 1519.368120] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1519.372461] ? alloc_pages_current+0xef/0x1e0 [ 1519.376977] kvm_vcpu_init+0x26d/0x360 [ 1519.380975] vmx_create_vcpu+0xf3/0x2900 [ 1519.385151] ? __mutex_unlock_slowpath+0x75/0x780 [ 1519.390276] ? futex_wake+0x11c/0x3d0 [ 1519.394121] ? handle_rdmsr+0x6b0/0x6b0 [ 1519.398281] kvm_vm_ioctl+0x49c/0x1430 [ 1519.402197] ? __lock_acquire+0x5f7/0x4620 [ 1519.406463] ? kvm_vcpu_release+0xa0/0xa0 [ 1519.410643] ? trace_hardirqs_on+0x10/0x10 [ 1519.414907] ? trace_hardirqs_on+0x10/0x10 [ 1519.419164] ? save_trace+0x290/0x290 [ 1519.423000] ? __might_fault+0x104/0x1b0 [ 1519.427081] ? kvm_vcpu_release+0xa0/0xa0 [ 1519.431250] do_vfs_ioctl+0x75a/0xfe0 [ 1519.435185] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1519.440047] ? ioctl_preallocate+0x1a0/0x1a0 [ 1519.444602] ? security_file_ioctl+0x76/0xb0 [ 1519.449153] ? security_file_ioctl+0x83/0xb0 [ 1519.454370] SyS_ioctl+0x7f/0xb0 [ 1519.457791] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1519.461791] do_syscall_64+0x1d5/0x640 [ 1519.465704] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1519.471088] RIP: 0033:0x45c849 [ 1519.474292] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1519.482154] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1519.489448] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1519.496909] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1519.504200] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1519.511508] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1519.555111] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1519.608492] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1519.647755] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1519.696732] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1519.722916] 14106 total pagecache pages [ 1519.732191] 0 pages in swap cache [ 1519.746538] Swap cache stats: add 0, delete 0, find 0/0 [ 1519.768059] Free swap = 0kB [ 1519.776491] Total swap = 0kB [ 1519.794886] 1965979 pages RAM [ 1519.807017] 0 pages HighMem/MovableOnly [ 1519.826292] 339049 pages reserved [ 1519.861058] 0 pages cma reserved 07:20:00 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000100)={[0x6, 0x4a84, 0x3, 0x2, 0x200, 0x0, 0x1, 0x1, 0x3, 0x1ff, 0x0, 0x3, 0x20, 0x3, 0x6c8, 0x2], 0x10000, 0x2000}) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000080)=ANY=[@ANYBLOB="466a4bd9f42c9b1c0d6292049b22651794386c3f5dcbca00ec9e1f649c163e9ec324b867158587cb79310b526998bd0cc1b9b8668bebf531e14033280aa812ab5808cb2d0a27edd894ef02a4c4568006973b033dc32264783c4e44f0fe1b37d39c45375f2c4ae56cd6f1161368a42a3c44562f910000000000000000"], 0x1) 07:20:00 executing program 3: r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080)='/dev/net/tun\x00', 0x0, 0x0) ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000100)={'syzkaller1\x00', 0xa732}) ioctl$TUNSETOFFLOAD(r0, 0x400454d0, 0x11) 07:20:00 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, 0xffffffffffffffff, 0x80000) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r4, 0x0, r4) fcntl$F_GET_RW_HINT(r4, 0x40b, &(0x7f00000000c0)) ioctl$KVM_TPR_ACCESS_REPORTING(0xffffffffffffffff, 0x4008ae89, &(0x7f0000000000)={0x0, 0xfffffc00, [0x40000105]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) r8 = fcntl$dupfd(r7, 0x0, r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) setsockopt$inet_int(r8, 0x0, 0x8981bb0e2629a47, &(0x7f0000000080)=0x2f, 0x4) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:20:00 executing program 2: r0 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000003740)='NLBL_UNLBL\x00') sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(0xffffffffffffffff, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)={0x6c, r0, 0x100, 0x70bd26, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @loopback}, @NLBL_UNLABEL_A_SECCTX={0x21, 0x7, 'system_u:object_r:fonts_t:s0\x00'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @dev={0xac, 0x14, 0x14, 0x2b}}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @initdev={0xfe, 0x88, [], 0x0, 0x0}}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}]}, 0x6c}}, 0x0) sendmsg$NLBL_UNLABEL_C_STATICADD(0xffffffffffffffff, &(0x7f0000000440)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x11040}, 0xc, &(0x7f0000000100)={&(0x7f00000003c0)={0x68, r0, 0x408, 0x70bd27, 0x25dfdbfc, {}, [@NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @multicast2}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @rand_addr=0x6}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @loopback}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @rand_addr=0x20}, @NLBL_UNLABEL_A_SECCTX={0x2a, 0x7, 'system_u:object_r:ssh_agent_exec_t:s0\x00'}]}, 0x68}, 0x1, 0x0, 0x0, 0x8010}, 0x4000) r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) r3 = socket$inet(0x2, 0x4000000805, 0x0) r4 = socket$inet_sctp(0x2, 0x5, 0x84) r5 = dup3(r3, r4, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000d6cff0)=[@in={0x2, 0x4e20, @loopback}], 0x10) sendto$inet(r5, &(0x7f0000fa3fff)='\t', 0x1, 0x4004, &(0x7f00006f7000)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) r7 = fcntl$dupfd(r6, 0x0, r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) ioctl$SNDRV_PCM_IOCTL_INFO(r7, 0x81204101, &(0x7f0000000280)) sendto$inet(r4, &(0x7f00003cef9f)='7', 0x1, 0x0, &(0x7f0000618000)={0x2, 0x4e20, @loopback}, 0x10) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f00000005c0)=ANY=[@ANYBLOB="82004000", @ANYRES32=0x0, @ANYPTR64=&(0x7f0000000600)=ANY=[@ANYRESHEX=r3, @ANYRESDEC, @ANYRES32=r2, @ANYRES32, @ANYRESDEC=r2, @ANYRES16=r0, @ANYBLOB="078341d3b2fa43e21472e50470a9845163f2956a80b41f2438a1b86db31ff36dd6e2b5282da096a6e298a8bf4771753091d4520396e7754d8fce76d91e1e47b72db50f0f8b5886ecd8e91a79f9e791cd4351001e1304e1c908d0bfd6209036b82e5e9a6e1bb20cf240098f81fa79bb8d9e9bc50aecef56c73f178fa4f759813e6cd225a28e40b00737423bd3b122bf1af7ce0165ff5fc07386bca54b87c33840dbc2cdb4efac21fb99", @ANYPTR64=&(0x7f0000000580)=ANY=[@ANYRESDEC, @ANYPTR=&(0x7f0000000500)=ANY=[@ANYRESOCT, @ANYPTR=&(0x7f00000004c0)=ANY=[@ANYRES64], @ANYRESHEX, @ANYRESHEX]]]], &(0x7f0000a8a000)=0x3) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r5, 0x84, 0x7a, &(0x7f000059aff8), &(0x7f000034f000)=0x2059b000) getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r2, 0x84, 0x6, &(0x7f00000001c0)={0x0, @in={{0x2, 0x4e23, @broadcast}}}, &(0x7f0000000040)=0x84) 07:20:00 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:00 executing program 3: sched_setattr(0x0, 0x0, 0x0) syz_extract_tcp_res$synack(0x0, 0x1, 0x0) setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0) r0 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x3}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)={0x2, 0x3, 0x0, 0x3, 0xc, 0x0, 0x0, 0x0, [@sadb_key={0x2, 0x8, 0x10, 0x0, "d781"}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @remote}}, @sadb_sa={0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0xffff, @multicast1}}]}, 0x60}}, 0x0) setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000680)='maps\x00') preadv(r2, 0x0, 0x0, 0x0) open(0x0, 0x200c2, 0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) bind$bt_l2cap(r3, &(0x7f00000000c0), 0xe) setsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x7, &(0x7f0000000480), 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r7 = socket$nl_route(0x10, 0x3, 0x0) r8 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="3400000010000104539300"/20, @ANYRES32=r9, @ANYBLOB="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"], 0x34}}, 0x0) sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r6}, [@IFLA_MASTER={0x8, 0xa, r9}]}, 0x28}}, 0x0) 07:20:00 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:00 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f0000000040)="00ef97d3ce0c8c21eaff1a1f90ef35afde805dab424046687cc0ea2151a80000", 0x20, 0x400}, {0x0, 0x0, 0x5671}], 0x81010, 0x0) [ 1520.275493] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1520.321390] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1520.348895] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1520.380173] CPU: 1 PID: 25353 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1520.381368] device bridge3 entered promiscuous mode [ 1520.388114] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1520.388119] Call Trace: [ 1520.388141] dump_stack+0x13e/0x194 [ 1520.388157] warn_alloc.cold+0x96/0x1af [ 1520.388167] ? zone_watermark_ok_safe+0x280/0x280 [ 1520.388187] ? wait_for_completion+0x390/0x390 [ 1520.388198] __alloc_pages_slowpath+0x2114/0x26c0 [ 1520.388219] ? warn_alloc+0xf0/0xf0 [ 1520.430105] syz-executor.1 cpuset= [ 1520.431234] ? find_held_lock+0x2d/0x110 [ 1520.431249] ? fs_reclaim_acquire+0x10/0x10 [ 1520.431272] __alloc_pages_nodemask+0x5d3/0x700 [ 1520.431284] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1520.431293] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1520.449386] syz1 [ 1520.452999] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1520.465243] alloc_pages_current+0xe7/0x1e0 [ 1520.469889] kvm_mmu_create+0xd1/0x1c0 [ 1520.474792] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1520.479271] ? alloc_pages_current+0xef/0x1e0 [ 1520.483804] kvm_vcpu_init+0x26d/0x360 [ 1520.487835] vmx_create_vcpu+0xf3/0x2900 [ 1520.491933] ? __mutex_unlock_slowpath+0x75/0x780 [ 1520.496801] ? futex_wake+0x11c/0x3d0 [ 1520.500624] ? handle_rdmsr+0x6b0/0x6b0 [ 1520.504617] kvm_vm_ioctl+0x49c/0x1430 [ 1520.508525] ? __lock_acquire+0x5f7/0x4620 [ 1520.512893] ? kvm_vcpu_release+0xa0/0xa0 [ 1520.517065] ? trace_hardirqs_on+0x10/0x10 [ 1520.521327] ? trace_hardirqs_on+0x10/0x10 [ 1520.525743] ? save_trace+0x290/0x290 [ 1520.529657] ? __might_fault+0x104/0x1b0 [ 1520.533754] ? kvm_vcpu_release+0xa0/0xa0 [ 1520.538150] do_vfs_ioctl+0x75a/0xfe0 [ 1520.541975] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1520.544171] mems_allowed=0-1 [ 1520.546944] ? ioctl_preallocate+0x1a0/0x1a0 [ 1520.546968] ? security_file_ioctl+0x76/0xb0 [ 1520.546978] ? security_file_ioctl+0x83/0xb0 [ 1520.546991] SyS_ioctl+0x7f/0xb0 [ 1520.547000] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1520.547013] do_syscall_64+0x1d5/0x640 [ 1520.575323] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1520.580532] RIP: 0033:0x45c849 [ 1520.583737] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1520.591459] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1520.598745] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1520.606036] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1520.613421] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1520.620712] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1520.628013] CPU: 0 PID: 25358 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1520.635925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1520.645032] device bridge_slave_0 left promiscuous mode [ 1520.645289] Call Trace: [ 1520.645306] dump_stack+0x13e/0x194 [ 1520.645320] warn_alloc.cold+0x96/0x1af [ 1520.661052] ? zone_watermark_ok_safe+0x280/0x280 [ 1520.666008] ? wait_for_completion+0x390/0x390 [ 1520.670768] __alloc_pages_slowpath+0x2114/0x26c0 [ 1520.673025] bridge0: port 1(bridge_slave_0) entered disabled state [ 1520.675882] ? warn_alloc+0xf0/0xf0 [ 1520.675895] ? find_held_lock+0x2d/0x110 [ 1520.675907] ? fs_reclaim_acquire+0x10/0x10 [ 1520.675933] __alloc_pages_nodemask+0x5d3/0x700 [ 1520.699310] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1520.704356] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1520.709232] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1520.714469] alloc_pages_current+0xe7/0x1e0 [ 1520.719042] kvm_mmu_create+0xd1/0x1c0 [ 1520.722951] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1520.727529] ? alloc_pages_current+0xef/0x1e0 [ 1520.732051] kvm_vcpu_init+0x26d/0x360 [ 1520.736133] vmx_create_vcpu+0xf3/0x2900 [ 1520.740218] ? __mutex_unlock_slowpath+0x75/0x780 [ 1520.745202] ? futex_wake+0x11c/0x3d0 [ 1520.749317] ? handle_rdmsr+0x6b0/0x6b0 [ 1520.753507] kvm_vm_ioctl+0x49c/0x1430 [ 1520.757414] ? __lock_acquire+0x5f7/0x4620 [ 1520.761664] ? kvm_vcpu_release+0xa0/0xa0 [ 1520.765833] ? trace_hardirqs_on+0x10/0x10 [ 1520.770094] ? trace_hardirqs_on+0x10/0x10 [ 1520.774351] ? save_trace+0x290/0x290 [ 1520.778717] ? __might_fault+0x104/0x1b0 [ 1520.782940] ? kvm_vcpu_release+0xa0/0xa0 [ 1520.787104] do_vfs_ioctl+0x75a/0xfe0 [ 1520.790939] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1520.795715] ? ioctl_preallocate+0x1a0/0x1a0 [ 1520.800155] ? security_file_ioctl+0x76/0xb0 [ 1520.804850] ? security_file_ioctl+0x83/0xb0 [ 1520.809389] SyS_ioctl+0x7f/0xb0 [ 1520.812779] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1520.816926] do_syscall_64+0x1d5/0x640 [ 1520.820834] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1520.826037] RIP: 0033:0x45c849 [ 1520.829364] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1520.837194] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1520.844484] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1520.851872] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1520.859161] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1520.866453] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c 07:20:01 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1520.977710] bridge3: port 1(bridge_slave_0) entered blocking state [ 1521.007975] bridge3: port 1(bridge_slave_0) entered disabled state [ 1521.077147] device bridge_slave_0 entered promiscuous mode [ 1521.120854] bridge3: port 1(bridge_slave_0) entered blocking state [ 1521.127731] bridge3: port 1(bridge_slave_0) entered forwarding state [ 1521.139660] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1521.210116] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1521.215735] CPU: 1 PID: 25383 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1521.223759] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1521.233221] Call Trace: [ 1521.235837] dump_stack+0x13e/0x194 [ 1521.239487] warn_alloc.cold+0x96/0x1af [ 1521.243479] ? zone_watermark_ok_safe+0x280/0x280 [ 1521.248355] ? wait_for_completion+0x390/0x390 [ 1521.253194] __alloc_pages_slowpath+0x2114/0x26c0 [ 1521.258277] ? warn_alloc+0xf0/0xf0 [ 1521.260360] warn_alloc_show_mem: 1 callbacks suppressed [ 1521.260363] Mem-Info: [ 1521.262143] ? find_held_lock+0x2d/0x110 [ 1521.262158] ? fs_reclaim_acquire+0x10/0x10 [ 1521.262180] __alloc_pages_nodemask+0x5d3/0x700 [ 1521.262192] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1521.262202] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1521.293379] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1521.298438] alloc_pages_current+0xe7/0x1e0 [ 1521.302807] kvm_mmu_create+0xd1/0x1c0 [ 1521.306726] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1521.307640] active_anon:797224 inactive_anon:201 isolated_anon:0 [ 1521.307640] active_file:7233 inactive_file:6335 isolated_file:11 [ 1521.307640] unevictable:0 dirty:8 writeback:0 unstable:0 [ 1521.307640] slab_reclaimable:12756 slab_unreclaimable:131570 [ 1521.307640] mapped:59073 shmem:540 pagetables:16435 bounce:0 [ 1521.307640] free:548409 free_pcp:395 free_cma:0 [ 1521.311064] ? alloc_pages_current+0xef/0x1e0 [ 1521.311081] kvm_vcpu_init+0x26d/0x360 [ 1521.311095] vmx_create_vcpu+0xf3/0x2900 [ 1521.311112] ? __mutex_unlock_slowpath+0x75/0x780 [ 1521.311122] ? futex_wake+0x11c/0x3d0 [ 1521.311130] ? handle_rdmsr+0x6b0/0x6b0 [ 1521.311143] kvm_vm_ioctl+0x49c/0x1430 [ 1521.311165] ? __lock_acquire+0x5f7/0x4620 [ 1521.378822] ? kvm_vcpu_release+0xa0/0xa0 [ 1521.383002] ? trace_hardirqs_on+0x10/0x10 [ 1521.387428] ? trace_hardirqs_on+0x10/0x10 [ 1521.391935] ? save_trace+0x290/0x290 [ 1521.395857] ? __might_fault+0x104/0x1b0 [ 1521.399954] ? kvm_vcpu_release+0xa0/0xa0 [ 1521.404545] do_vfs_ioctl+0x75a/0xfe0 [ 1521.411324] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1521.416112] ? ioctl_preallocate+0x1a0/0x1a0 [ 1521.420567] ? security_file_ioctl+0x76/0xb0 [ 1521.425129] ? security_file_ioctl+0x83/0xb0 [ 1521.429651] SyS_ioctl+0x7f/0xb0 [ 1521.433193] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1521.437520] do_syscall_64+0x1d5/0x640 [ 1521.442057] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1521.447501] RIP: 0033:0x45c849 [ 1521.450821] RSP: 002b:00007f4840a0dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1521.465522] RAX: ffffffffffffffda RBX: 00007f4840a0e6d4 RCX: 000000000045c849 [ 1521.474856] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1521.482355] RBP: 000000000076c040 R08: 0000000000000000 R09: 0000000000000000 [ 1521.489646] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff 07:20:01 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x4, 0x2, &(0x7f0000000000)=[{&(0x7f0000000040)="6a00a0e059032d71c9faa751f0642e8fd623ef97d37dce0c8c21eaff1ad5c98f13", 0x21, 0x402}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) [ 1521.494334] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:4kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):44kB mapped:208944kB dirty:0kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1521.497139] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076c04c 07:20:01 executing program 3: sched_setattr(0x0, 0x0, 0x0) syz_extract_tcp_res$synack(0x0, 0x1, 0x0) setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, 0x0, 0x0) r0 = getpgid(0x0) perf_event_open(&(0x7f0000000700)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x0, 0x0, 0x3}, r0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000040)) r1 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)={0x2, 0x3, 0x0, 0x3, 0xc, 0x0, 0x0, 0x0, [@sadb_key={0x2, 0x8, 0x10, 0x0, "d781"}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @remote}}, @sadb_sa={0x2}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0xffff, @multicast1}}]}, 0x60}}, 0x0) setsockopt$SO_TIMESTAMPING(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0) r2 = syz_open_procfs(0x0, &(0x7f0000000680)='maps\x00') preadv(r2, 0x0, 0x0, 0x0) open(0x0, 0x200c2, 0x0) r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3) bind$bt_l2cap(r3, &(0x7f00000000c0), 0xe) setsockopt$bt_BT_DEFER_SETUP(0xffffffffffffffff, 0x112, 0x7, &(0x7f0000000480), 0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000300)={'bridge_slave_0\x00', 0x0}) r7 = socket$nl_route(0x10, 0x3, 0x0) r8 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r8, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r7, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000780)=ANY=[@ANYBLOB="3400000010000104539300"/20, @ANYRES32=r9, @ANYBLOB="ddffffffffffffff140012000c0001006272696467650000040002004a7ba28c003e18d653883151cdad645e2b4f436b014dbe92b139188c1b6a238e3c4ad8aaf50c71a903efb4ed6f549d620cab62d981eb6d374923a2b1597449331902ca8bdf6a7b128fe8476d4d6652037756d0ac81399ac0582b151d141fe83ed1d9132ab02d67c1c5acd5789c25c5630cca8a430aeff83dd7770e5485b3580e6c37cdf78ebabc56f554ff14196fa347774c415acdeb046e3cf8a5afb70f632a8949ed4604bdd8af70dd52c26f6c603b8f3e34d021af03b3cfa8316e16c38ca72e58c356fde87643e8b809318f8d222ce63317ded42fa3aa3919507dfe439c6479605528726a068c"], 0x34}}, 0x0) sendmsg$nl_route(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r6}, [@IFLA_MASTER={0x8, 0xa, r9}]}, 0x28}}, 0x0) [ 1521.849022] Node 1 active_anon:1217636kB inactive_anon:20kB active_file:28928kB inactive_file:25340kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27448kB dirty:32kB writeback:0kB shmem:956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1521.849058] device bridge4 entered promiscuous mode [ 1521.944780] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1521.952449] device bridge_slave_0 left promiscuous mode [ 1522.066350] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1522.082219] bridge3: port 1(bridge_slave_0) entered disabled state [ 1522.087763] Node 0 DMA32 free:33508kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:44kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:868kB local_pcp:232kB free_cma:0kB [ 1522.158681] bridge4: port 1(bridge_slave_0) entered blocking state [ 1522.202503] bridge4: port 1(bridge_slave_0) entered disabled state [ 1522.222200] Mem-Info: [ 1522.224682] active_anon:797170 inactive_anon:200 isolated_anon:0 [ 1522.224682] active_file:7243 inactive_file:6341 isolated_file:0 [ 1522.224682] unevictable:0 dirty:56 writeback:0 unstable:0 [ 1522.224682] slab_reclaimable:12761 slab_unreclaimable:132234 [ 1522.224682] mapped:59097 shmem:540 pagetables:16382 bounce:0 [ 1522.224682] free:547864 free_pcp:494 free_cma:0 [ 1522.249041] lowmem_reserve[]: 0 0 0 0 0 [ 1522.328063] device bridge_slave_0 entered promiscuous mode [ 1522.354568] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1522.382775] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:44kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208944kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1522.408632] bridge4: port 1(bridge_slave_0) entered blocking state [ 1522.417257] bridge4: port 1(bridge_slave_0) entered forwarding state [ 1522.452979] Node 1 active_anon:1217620kB inactive_anon:16kB active_file:28928kB inactive_file:25360kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27344kB dirty:220kB writeback:0kB shmem:956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1522.540189] lowmem_reserve[]: 0 0 0 0 0 [ 1522.544237] Node 1 Normal free:2146352kB min:53612kB low:67012kB high:80412kB active_anon:1217520kB inactive_anon:16kB active_file:28928kB inactive_file:25360kB unevictable:0kB writepending:220kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12608kB pagetables:28516kB bounce:0kB free_pcp:1300kB local_pcp:660kB free_cma:0kB [ 1522.580475] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1522.695056] lowmem_reserve[]: 0 0 0 0 0 [ 1522.699096] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1522.743039] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1522.778626] Node 0 DMA32 free:33508kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:44kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:960kB local_pcp:708kB free_cma:0kB [ 1522.787527] Node 0 DMA32: 383*4kB (UME) 1417*8kB (UMEH) 785*16kB (UMEH) 240*32kB (UMEH) 6*64kB (ME) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 33492kB [ 1522.875548] lowmem_reserve[]: 0 0 0 0 0 [ 1522.905914] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1522.934948] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1522.959895] lowmem_reserve[]: 0 0 0 0 0 [ 1522.968763] Node 1 Normal free:2147488kB min:53612kB low:67012kB high:80412kB active_anon:1217420kB inactive_anon:16kB active_file:28928kB inactive_file:25360kB unevictable:0kB writepending:220kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12448kB pagetables:28516kB bounce:0kB free_pcp:1144kB local_pcp:600kB free_cma:0kB [ 1522.992686] Node 1 Normal: 159*4kB (UME) 165*8kB (UME) 92*16kB (UME) 274*32kB (UME) 65*64kB (UE) 10*128kB (U) 2*256kB (UE) 2*512kB (U) 5*1024kB (UME) 5*2048kB (UE) 516*4096kB (UM) = 2148068kB [ 1523.060462] lowmem_reserve[]: 0 0 0 0 0 [ 1523.067978] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1523.099472] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1523.104047] Node 0 DMA32: 383*4kB (UME) 1417*8kB (UMEH) 785*16kB (UMEH) 240*32kB (UMEH) 6*64kB (ME) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 33492kB [ 1523.144893] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1523.153684] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1523.179620] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1523.201079] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1523.207477] Node 1 Normal: 174*4kB (UME) 153*8kB (UME) 20*16kB (UME) 271*32kB (UME) 65*64kB (UE) 15*128kB (U) 3*256kB (UE) 2*512kB (U) 5*1024kB (UME) 5*2048kB (UE) 516*4096kB (UM) = 2147680kB [ 1523.219406] 14126 total pagecache pages [ 1523.246879] 0 pages in swap cache [ 1523.255672] Swap cache stats: add 0, delete 0, find 0/0 [ 1523.269928] Free swap = 0kB [ 1523.277018] Total swap = 0kB [ 1523.280568] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1523.287033] 1965979 pages RAM [ 1523.289420] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1523.289427] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1523.289433] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB 07:20:03 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$VIDIOC_QUERYCAP(r1, 0x80685600, &(0x7f0000000040)) r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) r4 = accept4$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000001c0)=0x14, 0x80800) getpeername$packet(r4, &(0x7f0000000200)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000240)=0x14) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) [ 1523.289437] 14126 total pagecache pages [ 1523.289446] 0 pages in swap cache [ 1523.301289] 0 pages HighMem/MovableOnly [ 1523.301294] 339049 pages reserved [ 1523.301297] 0 pages cma reserved [ 1523.460855] Swap cache stats: add 0, delete 0, find 0/0 [ 1523.479876] Free swap = 0kB [ 1523.486955] Total swap = 0kB [ 1523.493892] 1965979 pages RAM [ 1523.500811] 0 pages HighMem/MovableOnly 07:20:03 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) dup3(r0, r1, 0x0) openat$vcs(0xffffffffffffff9c, &(0x7f0000000100)='/dev/vcs\x00', 0x260d03, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0x4008ae89, &(0x7f0000000000)={0x7, 0x4, [0x4d0]}) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f00000000c0)=ANY=[@ANYBLOB="7350e5f75aa72d6e8dd1b5a305230531439b00c15f"], 0x1) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) r8 = fcntl$dupfd(r7, 0x0, r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) ioctl$SNDRV_RAWMIDI_IOCTL_DRAIN(r8, 0x40045731, &(0x7f0000000080)=0x7) 07:20:03 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:03 executing program 3: bind(0xffffffffffffffff, &(0x7f0000000280)=@generic={0x0, "0000010000000000080044944eeba71a4976e252922cb18f6e2e2aba000000012e0b3836005404b0e0301a4ce875f2e3ff5f163ee340b7679500800000000000000101013c5811039e15775027ecce66fd792bbf0e5bf5ff1b0816f3f6db1c00010000000000000049740000000000000006ad8e5ecc326d3a09ffc2c654"}, 0x58) sendmsg$DEVLINK_CMD_PORT_SET(0xffffffffffffffff, 0x0, 0x0) ioctl$BINDER_SET_MAX_THREADS(0xffffffffffffffff, 0x40046205, 0x0) sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0) socket$inet_udplite(0x2, 0x2, 0x88) syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x0, 0x1, &(0x7f0000000380)=[{&(0x7f0000000100)="eb3c906d6b66732e666174000204010002000270fff8", 0xffdf}], 0x0, 0x0) r0 = open(&(0x7f0000000200)='./file0\x00', 0x0, 0x0) fchdir(r0) r1 = getpid() ptrace$pokeuser(0x6, r1, 0x0, 0x0) clone(0xc75e43cfae22dd4, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = open(&(0x7f0000000100)='./file0\x00', 0x40c2, 0x0) r3 = open$dir(&(0x7f0000000300)='./file0\x00', 0x0, 0x0) r4 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/timer_list\x00', 0x0, 0x0) dup3(r4, r3, 0x0) sendfile(r2, r3, 0x0, 0x7fffffa7) 07:20:03 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b75fb3488fd8015bba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377aba09e7b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047706865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB="c0"], 0x1) 07:20:03 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b75fb3488fd8015bba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377aba09e7b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c1bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd809a0163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047706865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$VIDIOC_ENCODER_CMD(r4, 0xc028564d, &(0x7f0000000080)={0x2, 0x1, [0x10000, 0xca1f, 0x4, 0x30, 0x0, 0x8, 0x3f, 0x78e]}) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = fcntl$dupfd(r5, 0x0, r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$KVM_TPR_ACCESS_REPORTING(r6, 0x4008ae89, &(0x7f0000000000)={0x3, 0x7, [0xc0000080]}) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) r8 = fcntl$dupfd(r7, 0x0, r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f00000000c0)=ANY=[@ANYRESOCT=r8], 0x1) 07:20:03 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) [ 1523.509895] 339049 pages reserved [ 1523.518454] 0 pages cma reserved [ 1523.675319] audit: type=1800 audit(1585639203.714:524): pid=25456 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="collect_data" cause="failed(directio)" comm="syz-executor.3" name="file0" dev="sda1" ino=17219 res=0 07:20:03 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$VIDIOC_S_FREQUENCY(r1, 0x402c5639, &(0x7f0000000040)={0x10000, 0x5, 0x7}) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) 07:20:03 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:03 executing program 3: prlimit64(0x0, 0xe, 0x0, 0x0) getpid() sched_setattr(0x0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0) r0 = socket$inet6(0xa, 0x0, 0x0) recvmmsg(r0, &(0x7f00000009c0)=[{{0x0, 0x0, &(0x7f0000002d80)=[{&(0x7f0000002d40)=""/41, 0x29}], 0x1, &(0x7f0000000240)=""/57, 0x39}}], 0x1, 0x0, 0x0) pipe(&(0x7f0000000340)={0xffffffffffffffff, 0xffffffffffffffff}) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x0, 0x0, 0x6}, 0x0) r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/fib_triestat\x00') preadv(r3, &(0x7f00000017c0), 0x1b2, 0x0) [ 1523.827016] audit: type=1804 audit(1585639203.714:525): pid=25456 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="open_writers" comm="syz-executor.3" name="file0" dev="sda1" ino=17219 res=1 [ 1523.853741] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1523.854676] syz-executor.4: [ 1523.887113] syz-executor.1: [ 1523.900996] syz-executor.0 cpuset= [ 1523.910646] page allocation failure: order:0 [ 1523.919402] page allocation failure: order:0 [ 1523.922720] syz0 [ 1523.932072] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1523.947910] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1523.972872] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1523.984073] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1523.985119] mems_allowed=0-1 [ 1524.042073] CPU: 1 PID: 25461 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1524.050021] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1524.059402] Call Trace: [ 1524.062002] dump_stack+0x13e/0x194 [ 1524.065637] warn_alloc.cold+0x96/0x1af [ 1524.069616] ? zone_watermark_ok_safe+0x280/0x280 [ 1524.074475] ? wait_for_completion+0x390/0x390 [ 1524.079072] __alloc_pages_slowpath+0x2114/0x26c0 [ 1524.083933] ? warn_alloc+0xf0/0xf0 [ 1524.087569] ? find_held_lock+0x2d/0x110 [ 1524.091624] ? fs_reclaim_acquire+0x10/0x10 [ 1524.095960] __alloc_pages_nodemask+0x5d3/0x700 [ 1524.100662] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1524.105688] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1524.110538] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1524.115578] alloc_pages_current+0xe7/0x1e0 [ 1524.119949] kvm_mmu_create+0xd1/0x1c0 [ 1524.123840] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1524.128174] ? alloc_pages_current+0xef/0x1e0 [ 1524.132687] kvm_vcpu_init+0x26d/0x360 [ 1524.136607] vmx_create_vcpu+0xf3/0x2900 [ 1524.140681] ? __mutex_unlock_slowpath+0x75/0x780 [ 1524.145539] ? futex_wake+0x11c/0x3d0 [ 1524.149357] ? handle_rdmsr+0x6b0/0x6b0 [ 1524.153342] kvm_vm_ioctl+0x49c/0x1430 [ 1524.157239] ? __lock_acquire+0x5f7/0x4620 [ 1524.161916] ? kvm_vcpu_release+0xa0/0xa0 [ 1524.166073] ? trace_hardirqs_on+0x10/0x10 [ 1524.170321] ? trace_hardirqs_on+0x10/0x10 [ 1524.174577] ? save_trace+0x290/0x290 [ 1524.178388] ? __might_fault+0x104/0x1b0 [ 1524.182465] ? kvm_vcpu_release+0xa0/0xa0 [ 1524.186621] do_vfs_ioctl+0x75a/0xfe0 [ 1524.190438] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1524.195207] ? ioctl_preallocate+0x1a0/0x1a0 [ 1524.199631] ? security_file_ioctl+0x76/0xb0 [ 1524.204048] ? security_file_ioctl+0x83/0xb0 [ 1524.208468] SyS_ioctl+0x7f/0xb0 [ 1524.211851] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1524.215847] do_syscall_64+0x1d5/0x640 [ 1524.219748] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1524.224975] RIP: 0033:0x45c849 [ 1524.228168] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 07:20:04 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) symlinkat(&(0x7f0000000040)='./file0\x00', r1, &(0x7f0000000080)='./file0\x00') r2 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r3 = dup(r2) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = fcntl$dupfd(r5, 0x0, r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$RFKILL_IOCTL_NOINPUT(r6, 0x5201) r7 = fcntl$dupfd(r4, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) ioctl$EVIOCSKEYCODE(r7, 0x40084504, &(0x7f0000000100)=[0x2, 0x7e]) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000001c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x8}], 0x0, 0x0) [ 1524.235882] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1524.243168] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1524.250556] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1524.258125] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1524.265401] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1524.276426] CPU: 0 PID: 25463 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1524.284347] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1524.293711] Call Trace: [ 1524.296311] dump_stack+0x13e/0x194 [ 1524.299954] warn_alloc.cold+0x96/0x1af [ 1524.303933] ? zone_watermark_ok_safe+0x280/0x280 [ 1524.308788] ? wait_for_completion+0x390/0x390 [ 1524.313384] __alloc_pages_slowpath+0x2114/0x26c0 [ 1524.318256] ? warn_alloc+0xf0/0xf0 [ 1524.321896] ? find_held_lock+0x2d/0x110 [ 1524.325975] ? fs_reclaim_acquire+0x10/0x10 [ 1524.330318] __alloc_pages_nodemask+0x5d3/0x700 [ 1524.335006] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1524.340056] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1524.344910] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1524.349938] alloc_pages_current+0xe7/0x1e0 [ 1524.354270] kvm_mmu_create+0xd1/0x1c0 [ 1524.358160] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1524.362477] ? alloc_pages_current+0xef/0x1e0 [ 1524.366972] kvm_vcpu_init+0x26d/0x360 [ 1524.370861] vmx_create_vcpu+0xf3/0x2900 [ 1524.374955] ? __mutex_unlock_slowpath+0x75/0x780 [ 1524.379787] ? futex_wake+0x11c/0x3d0 [ 1524.383588] ? handle_rdmsr+0x6b0/0x6b0 [ 1524.387573] kvm_vm_ioctl+0x49c/0x1430 [ 1524.391469] ? __lock_acquire+0x5f7/0x4620 [ 1524.395714] ? kvm_vcpu_release+0xa0/0xa0 [ 1524.399870] ? trace_hardirqs_on+0x10/0x10 [ 1524.404118] ? trace_hardirqs_on+0x10/0x10 [ 1524.408363] ? save_trace+0x290/0x290 [ 1524.412175] ? __might_fault+0x104/0x1b0 [ 1524.416250] ? kvm_vcpu_release+0xa0/0xa0 [ 1524.420409] do_vfs_ioctl+0x75a/0xfe0 [ 1524.424218] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1524.428983] ? ioctl_preallocate+0x1a0/0x1a0 [ 1524.433398] ? security_file_ioctl+0x76/0xb0 [ 1524.437816] ? security_file_ioctl+0x83/0xb0 [ 1524.442261] SyS_ioctl+0x7f/0xb0 [ 1524.445637] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1524.449624] do_syscall_64+0x1d5/0x640 [ 1524.453523] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1524.458718] RIP: 0033:0x45c849 [ 1524.461915] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1524.470414] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1524.477719] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1524.484998] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1524.492277] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1524.499553] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1524.507711] CPU: 1 PID: 25472 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1524.515624] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1524.524989] Call Trace: [ 1524.527587] dump_stack+0x13e/0x194 [ 1524.531219] warn_alloc.cold+0x96/0x1af [ 1524.535201] ? zone_watermark_ok_safe+0x280/0x280 [ 1524.540068] ? wait_for_completion+0x390/0x390 [ 1524.544673] __alloc_pages_slowpath+0x2114/0x26c0 [ 1524.549548] ? warn_alloc+0xf0/0xf0 [ 1524.553179] ? find_held_lock+0x2d/0x110 [ 1524.557243] ? fs_reclaim_acquire+0x10/0x10 [ 1524.561580] __alloc_pages_nodemask+0x5d3/0x700 [ 1524.566256] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1524.571290] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1524.576142] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1524.581173] alloc_pages_current+0xe7/0x1e0 [ 1524.586121] kvm_mmu_create+0xd1/0x1c0 [ 1524.590032] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1524.594357] ? alloc_pages_current+0xef/0x1e0 [ 1524.598854] kvm_vcpu_init+0x26d/0x360 [ 1524.602748] vmx_create_vcpu+0xf3/0x2900 [ 1524.606816] ? __mutex_unlock_slowpath+0x75/0x780 [ 1524.611672] ? futex_wake+0x11c/0x3d0 [ 1524.615484] ? handle_rdmsr+0x6b0/0x6b0 [ 1524.619471] kvm_vm_ioctl+0x49c/0x1430 [ 1524.623368] ? __lock_acquire+0x5f7/0x4620 [ 1524.627616] ? kvm_vcpu_release+0xa0/0xa0 [ 1524.631769] ? trace_hardirqs_on+0x10/0x10 [ 1524.636010] ? trace_hardirqs_on+0x10/0x10 [ 1524.640248] ? save_trace+0x290/0x290 [ 1524.644046] ? __might_fault+0x104/0x1b0 [ 1524.648114] ? kvm_vcpu_release+0xa0/0xa0 [ 1524.652261] do_vfs_ioctl+0x75a/0xfe0 [ 1524.656062] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1524.660827] ? ioctl_preallocate+0x1a0/0x1a0 [ 1524.666636] ? security_file_ioctl+0x76/0xb0 [ 1524.671046] ? security_file_ioctl+0x83/0xb0 [ 1524.675455] SyS_ioctl+0x7f/0xb0 [ 1524.678820] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1524.682798] do_syscall_64+0x1d5/0x640 [ 1524.686691] entry_SYSCALL_64_after_hwframe+0x42/0xb7 07:20:04 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1524.691881] RIP: 0033:0x45c849 [ 1524.695065] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1524.702774] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1524.710063] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1524.717330] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1524.724600] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1524.731864] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c 07:20:04 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$SNDRV_RAWMIDI_IOCTL_PVERSION(r3, 0x80045700, &(0x7f0000000040)) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) prctl$PR_MCE_KILL(0x21, 0x0, 0x0) [ 1525.062725] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1525.117645] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1525.150252] CPU: 1 PID: 25514 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1525.158202] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1525.167567] Call Trace: [ 1525.170170] dump_stack+0x13e/0x194 [ 1525.173818] warn_alloc.cold+0x96/0x1af [ 1525.177812] ? zone_watermark_ok_safe+0x280/0x280 [ 1525.182678] ? wait_for_completion+0x390/0x390 [ 1525.187276] __alloc_pages_slowpath+0x2114/0x26c0 [ 1525.189520] warn_alloc_show_mem: 2 callbacks suppressed [ 1525.189524] Mem-Info: [ 1525.192136] ? warn_alloc+0xf0/0xf0 [ 1525.192146] ? find_held_lock+0x2d/0x110 [ 1525.192158] ? fs_reclaim_acquire+0x10/0x10 [ 1525.192197] __alloc_pages_nodemask+0x5d3/0x700 [ 1525.201562] active_anon:797134 inactive_anon:198 isolated_anon:0 [ 1525.201562] active_file:7241 inactive_file:6352 isolated_file:2 [ 1525.201562] unevictable:0 dirty:0 writeback:0 unstable:0 [ 1525.201562] slab_reclaimable:12687 slab_unreclaimable:132805 [ 1525.201562] mapped:59098 shmem:540 pagetables:16350 bounce:0 [ 1525.201562] free:547737 free_pcp:155 free_cma:0 [ 1525.203566] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1525.203577] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1525.203585] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1525.203605] alloc_pages_current+0xe7/0x1e0 [ 1525.210724] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:32kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):8kB mapped:208944kB dirty:0kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1525.211989] kvm_mmu_create+0xd1/0x1c0 [ 1525.212005] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1525.212015] ? alloc_pages_current+0xef/0x1e0 [ 1525.212027] kvm_vcpu_init+0x26d/0x360 [ 1525.219858] Node 1 active_anon:1217476kB inactive_anon:8kB active_file:28932kB inactive_file:25400kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27448kB dirty:0kB writeback:0kB shmem:956kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1525.250657] vmx_create_vcpu+0xf3/0x2900 [ 1525.250674] ? __mutex_unlock_slowpath+0x75/0x780 [ 1525.250686] ? handle_rdmsr+0x6b0/0x6b0 [ 1525.250703] kvm_vm_ioctl+0x49c/0x1430 [ 1525.250716] ? __lock_acquire+0x5f7/0x4620 [ 1525.250727] ? kvm_vcpu_release+0xa0/0xa0 [ 1525.295520] Node 0 [ 1525.297492] ? trace_hardirqs_on+0x10/0x10 [ 1525.297508] ? trace_hardirqs_on+0x10/0x10 [ 1525.297521] ? save_trace+0x290/0x290 [ 1525.308988] DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1525.310210] ? __might_fault+0x104/0x1b0 [ 1525.310228] ? kvm_vcpu_release+0xa0/0xa0 [ 1525.310241] do_vfs_ioctl+0x75a/0xfe0 [ 1525.310253] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1525.310267] ? ioctl_preallocate+0x1a0/0x1a0 [ 1525.316818] lowmem_reserve[]: [ 1525.341689] ? security_file_ioctl+0x76/0xb0 [ 1525.341699] ? security_file_ioctl+0x83/0xb0 [ 1525.341713] SyS_ioctl+0x7f/0xb0 [ 1525.341723] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1525.341734] do_syscall_64+0x1d5/0x640 [ 1525.341750] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1525.341759] RIP: 0033:0x45c849 [ 1525.341767] RSP: 002b:00007f75f721bc78 EFLAGS: 00000246 [ 1525.378090] 0 [ 1525.381343] ORIG_RAX: 0000000000000010 [ 1525.381350] RAX: ffffffffffffffda RBX: 00007f75f721c6d4 RCX: 000000000045c849 [ 1525.381356] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1525.381361] RBP: 000000000076c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1525.381367] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1525.381373] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076c0ec [ 1525.511237] 2557 2557 2557 2557 [ 1525.515981] Node 0 DMA32 free:34576kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:32kB inactive_file:8kB unevictable:0kB writepending:0kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:80kB local_pcp:76kB free_cma:0kB [ 1525.629398] lowmem_reserve[]: 0 0 0 0 0 [ 1525.670567] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 07:20:05 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) lsetxattr$security_capability(&(0x7f0000000080)='./file0\x00', &(0x7f0000000100)='security.capability\x00', &(0x7f0000000200)=@v3={0x3000000, [{0x5, 0x6}, {0x6, 0xffff40fb}]}, 0x18, 0x3) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) r4 = dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r7, 0x0, r7) r8 = socket$inet6_tcp(0xa, 0x1, 0x0) r9 = fcntl$dupfd(r8, 0x0, r8) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(r4, 0x4000000000000, 0x40, &(0x7f00000000c0)=ANY=[@ANYRESOCT=r0], 0x1) 07:20:05 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) r4 = dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) r7 = syz_open_dev$vcsa(&(0x7f0000000080)='/dev/vcsa#\x00', 0xffff, 0x4000) ioctl$KVM_REINJECT_CONTROL(r7, 0xae71, &(0x7f00000000c0)={0x1a}) r8 = socket$inet6_tcp(0xa, 0x1, 0x0) r9 = fcntl$dupfd(r8, 0x0, r8) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(r4, 0x4000000000000, 0x40, &(0x7f0000000100)=ANY=[@ANYRESOCT=r9], 0x1) 07:20:05 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:05 executing program 3: r0 = socket$inet(0x10, 0x2, 0x0) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) openat$nvram(0xffffffffffffff9c, &(0x7f0000000080)='/dev/nvram\x00', 0x24000, 0x0) [ 1525.838584] audit: type=1800 audit(1585639205.874:526): pid=25546 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="collect_data" cause="failed(directio)" comm="syz-executor.3" name="nvram" dev="sda1" ino=17068 res=0 [ 1525.849145] lowmem_reserve[]: 0 0 0 0 0 [ 1525.999709] Node 1 Normal free:2144800kB min:53612kB low:67012kB high:80412kB active_anon:1217576kB inactive_anon:8kB active_file:28932kB inactive_file:25400kB unevictable:0kB writepending:80kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12704kB pagetables:28536kB bounce:0kB free_pcp:1076kB local_pcp:508kB free_cma:0kB [ 1526.075861] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1526.126889] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1526.142048] CPU: 1 PID: 25544 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1526.149971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1526.159338] Call Trace: [ 1526.161943] dump_stack+0x13e/0x194 [ 1526.165684] warn_alloc.cold+0x96/0x1af [ 1526.169684] ? zone_watermark_ok_safe+0x280/0x280 [ 1526.174545] ? wait_for_completion+0x390/0x390 [ 1526.179239] __alloc_pages_slowpath+0x2114/0x26c0 [ 1526.183303] lowmem_reserve[]: 0 0 0 [ 1526.184098] ? warn_alloc+0xf0/0xf0 [ 1526.184104] 0 [ 1526.187717] ? find_held_lock+0x2d/0x110 [ 1526.187729] ? fs_reclaim_acquire+0x10/0x10 [ 1526.187753] __alloc_pages_nodemask+0x5d3/0x700 [ 1526.206229] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1526.211256] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1526.213892] 0 [ 1526.216101] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1526.216123] alloc_pages_current+0xe7/0x1e0 [ 1526.216137] kvm_mmu_create+0xd1/0x1c0 [ 1526.222943] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1526.222955] ? alloc_pages_current+0xef/0x1e0 [ 1526.222968] kvm_vcpu_init+0x26d/0x360 [ 1526.230773] Node 0 [ 1526.231171] vmx_create_vcpu+0xf3/0x2900 [ 1526.231188] ? __mutex_unlock_slowpath+0x75/0x780 [ 1526.241035] DMA: [ 1526.243875] ? futex_wake+0x11c/0x3d0 [ 1526.243888] ? handle_rdmsr+0x6b0/0x6b0 [ 1526.243904] kvm_vm_ioctl+0x49c/0x1430 [ 1526.249926] 1*4kB [ 1526.250179] ? __lock_acquire+0x5f7/0x4620 [ 1526.250190] ? kvm_vcpu_release+0xa0/0xa0 [ 1526.250201] ? trace_hardirqs_on+0x10/0x10 [ 1526.261270] (M) [ 1526.264865] ? trace_hardirqs_on+0x10/0x10 [ 1526.264879] ? save_trace+0x290/0x290 [ 1526.272547] 2*8kB [ 1526.275123] ? __might_fault+0x104/0x1b0 [ 1526.275141] ? kvm_vcpu_release+0xa0/0xa0 [ 1526.275154] do_vfs_ioctl+0x75a/0xfe0 [ 1526.282723] (H) [ 1526.283631] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1526.283645] ? ioctl_preallocate+0x1a0/0x1a0 [ 1526.289609] 3*16kB [ 1526.289903] ? security_file_ioctl+0x76/0xb0 [ 1526.298840] (H) [ 1526.299873] ? security_file_ioctl+0x83/0xb0 [ 1526.299888] SyS_ioctl+0x7f/0xb0 [ 1526.299898] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1526.310341] 2*32kB [ 1526.314553] do_syscall_64+0x1d5/0x640 [ 1526.314570] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1526.314580] RIP: 0033:0x45c849 [ 1526.324717] (UH) [ 1526.325618] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1526.325628] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1526.325636] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1526.331437] 3*64kB [ 1526.332000] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1526.340593] (UMH) [ 1526.341664] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1526.341670] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1526.677086] 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1526.705129] Node 0 DMA32: 709*4kB (UME) 1420*8kB (UMEH) 787*16kB (UMEH) 240*32kB (UMEH) 6*64kB (ME) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34852kB [ 1526.747684] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1526.772635] warn_alloc_show_mem: 3 callbacks suppressed [ 1526.772638] Mem-Info: [ 1526.786365] Node 1 Normal: 12*4kB (UME) 318*8kB (UME) 199*16kB (UME) 173*32kB (UME) 71*64kB (UME) 15*128kB (UME) 8*256kB (UME) 5*512kB (UM) 8*1024kB (UME) 5*2048kB (UE) 514*4096kB (UM) = 2146160kB [ 1526.790698] active_anon:797116 inactive_anon:199 isolated_anon:0 [ 1526.790698] active_file:7243 inactive_file:6365 isolated_file:0 [ 1526.790698] unevictable:0 dirty:19 writeback:0 unstable:0 [ 1526.790698] slab_reclaimable:12653 slab_unreclaimable:132672 [ 1526.790698] mapped:59073 shmem:541 pagetables:16310 bounce:0 [ 1526.790698] free:547896 free_pcp:321 free_cma:0 [ 1526.830412] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1526.894770] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1526.895671] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:28kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1526.920306] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1526.982892] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1527.006751] 14148 total pagecache pages [ 1527.015953] 0 pages in swap cache [ 1527.024097] Node 1 active_anon:1217504kB inactive_anon:12kB active_file:28944kB inactive_file:25452kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27360kB dirty:72kB writeback:0kB shmem:960kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1527.024503] Swap cache stats: add 0, delete 0, find 0/0 [ 1527.095570] Free swap = 0kB [ 1527.103308] Total swap = 0kB [ 1527.110336] 1965979 pages RAM [ 1527.113848] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1527.117314] 0 pages HighMem/MovableOnly [ 1527.180849] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1527.186096] Node 0 DMA32 free:34852kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:28kB inactive_file:8kB unevictable:0kB writepending:0kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:344kB local_pcp:184kB free_cma:0kB [ 1527.202497] 339049 pages reserved [ 1527.243018] 0 pages cma reserved 07:20:07 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) openat$pidfd(0xffffffffffffff9c, &(0x7f0000000280)='/proc/self\x00', 0x200, 0x0) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r3, 0x0, r3) getsockopt$sock_timeval(r3, 0x1, 0x14, &(0x7f0000000080), &(0x7f00000000c0)=0x10) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) r7 = fcntl$dupfd(r6, 0x0, r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) setsockopt$packet_rx_ring(r7, 0x107, 0x5, &(0x7f0000000240)=@req3={0x1, 0x9a, 0xff, 0x4, 0x1c2, 0x4, 0x8c060000}, 0x1c) ioctl$DRM_IOCTL_MODE_SETGAMMA(r5, 0xc02064a5, &(0x7f0000000200)={0x5, 0x5, &(0x7f0000000140)=[0x7, 0x9, 0x0, 0x9, 0x6], &(0x7f0000000180)=[0x2, 0x20, 0x8, 0x9], &(0x7f00000001c0)=[0xdc, 0x1, 0x4, 0x1, 0x5, 0x6, 0x8000, 0x0, 0x1, 0x0]}) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000100)=ANY=[@ANYBLOB="729fd867516015e3ac180ad200"/28], 0x1) 07:20:07 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/asound/timers\x00', 0x0, 0x0) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) bind$bt_l2cap(r1, &(0x7f0000000040)={0x1f, 0x5, @none, 0x3}, 0xe) io_setup(0x7, &(0x7f0000000080)=0x0) r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100)='/dev/net/tun\x00', 0x452400, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) r7 = fcntl$dupfd(r6, 0x0, r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) r8 = socket$inet6_tcp(0xa, 0x1, 0x0) r9 = fcntl$dupfd(r8, 0x0, r8) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x400200) fchmodat(r9, &(0x7f0000000300)='./file0\x00', 0x182) getsockopt$inet_sctp6_SCTP_MAX_BURST(r7, 0x84, 0x14, &(0x7f0000000280), &(0x7f00000002c0)=0x4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) io_cancel(r2, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x3, 0x8, r3, &(0x7f0000000340)="5d3427df9ba6cb0f5277f7eb649356a963a1f31e5c02303b127a565e16b441d0c0732637143bc0063f981d3500f09f7bc748574c4fa548995cbcd7e1453434f076d9fa73bed2ccbf749b034ac602512ed5439f01a13fbee5b4983752b3543295e589af49f823ca57f7d469b172e2e0ffb068531aefd40653b5e3edf66d6d002f9fc970ed0634dd51eef2550378b3270b88979d64eb8974b78eff37b9958d57f1f54283370d628a57cb4e3a3a98dc138b20f52cad5d205a956f626e861f76e9c1f9bb4d8c03793e377138b2f9bc563fc3d250de42f3a35c90c7b8554fa3f8e65587fdc9dc00"/242, 0xf2, 0xb9, 0x0, 0x0, r5}, &(0x7f0000000240)) 07:20:07 executing program 3: syz_open_procfs(0x0, 0x0) r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) r1 = gettid() poll(&(0x7f0000000180)=[{r0}, {}], 0x2, 0x0) process_vm_writev(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) tkill(r1, 0x33) 07:20:07 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:07 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b75fb3488fd8015bba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377aba09e7b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047706865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) getsockopt$inet_sctp6_SCTP_RESET_STREAMS(0xffffffffffffffff, 0x84, 0x77, &(0x7f00000000c0)={0x0, 0x0, 0x1, [0x2]}, &(0x7f0000000100)=0xa) setsockopt$inet_sctp6_SCTP_AUTH_DEACTIVATE_KEY(r4, 0x84, 0x23, &(0x7f0000000140)={r5, 0x6}, 0x8) prctl$PR_SET_NAME(0xf, &(0x7f0000000080)='/dev/kvm\x00') ioctl$KVM_RUN(r2, 0xae80, 0x0) r6 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r6, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) [ 1527.293938] lowmem_reserve[]: 0 0 0 0 0 [ 1527.297972] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 07:20:07 executing program 3: r0 = socket$inet(0x10, 0x2, 0x0) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet6(0xa, 0x3, 0x6) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0xffffffff}, 0x1c) 07:20:07 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$EVIOCGMTSLOTS(r1, 0x8040450a, &(0x7f0000001300)=""/196) syz_mount_image$minix(&(0x7f0000000100)='minix\x00', &(0x7f0000000000)='./file0\x00', 0x20, 0x5, &(0x7f0000001280)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0}, {&(0x7f0000000180)="8450bf63c0a0e0d0a3cd65b36af8d7e6df480578d6f3951db310630d42123f2d4a73ae8756d0fd7f552831e20496052d56dc4cb8319311b8a1652578b9ff7ddc4c4201e16dc57724e018cbdd176b395607d78e0494941ae1fc15d4aebd40b1617a379fc52e353c529d940d920b941c6311718a59db02606beb895bc41823d6a1ff1103f50e4cffdc05f492b49d8c89d0674a8877aa10bcf488a143d4a28cb83609997b46f3214d77b276e693aca33a2aa05768c22738181199fadb9b0aee777931a549a4ef280bfa84dc411fb87d4dd37c95c991f38e746a21c8c198cfd19e7b67f4898d5ed442fb762e605aa2fb629b4e86fb1338b20d49547f38161b02e44303875e5219e0454656f2ae620c1884a50a06546080ebafd5ea7a39f4b602d4662a59befb0f0aca42c0666cc6b8cf9392ac05e970a2f15029c08b1e26d3f8afc626f3021a8fa2146d734149583f2013916dbb3e004ca5db9b3ee461c8df9603b54e05f11ccb79fe3861a8bf9cc3163651e1a7597363d084cf0e716e42ad42ebc45adce5a398834f5edb96885fc68e1111238176258ab08f79adfb7f572090528604a5e13e7d31fdfb21a534b122ea3f7e13b94326bfdc7f7276d865303758bd6a5eb7bb7cabfe88a7270788b723242fe1afa76e99007804272596d998b682d8e8096f9b42eaf3d2e6e1ec8f50beac81b4608c3a372b8ff9cd5f93887147593dcb8f63e1e669fc69dcbfbbbf65b218e3389b3529f11c5fe288b0d75d95a3ac44b0012914ec12cb0a47416fee98b44b69f996d0d6c8249f12e3b89826149f339e6e71ae0689a17dd7cccc0fd45fc9c23806d78bd29d2babf3351ec778c9d8e35297e22c1effa02c767f68a497cbc1b77ce2fe537ec80f6097b148c5b501ae034380c4902eaf436150daf8405373d8b37041a0a7941737aa3cf1c4010e415f436b5e542563e4eb02d56f9179d897c259e65a5e93aa76d29713f910f554f1f2d44cb9b6b27f715cfb2e1c07836a70c454bccedbe911977e0b69733083cba1dbf9c52ef3b29c7de5ff550a1cb84a772440533f3291e74552a7e85a8825c031dd77e38a4edcd32e587806ac44452734158283dd22f726091f810d03d69b57ca532a9214dee4d9181a27596764f2f71513f180c145caba077b86362c100308bd6a52c7d0ed205e346f669b881118f2c80f01cfedf46cc23f3caec62c4b0425ef61ae063b8e35ddeb7e70f24928cc2a84e15d895c9d368d9feb4f0160f9a1984ece951ea73cbc4f8dd2daa25717b48b6dd14196f086ae00d1a1948b10661766266b88799735a2c123b94c18af330d594d6172d5d8199325af8ac79e1354f242b82dc60f346050af75f0d1d074a1cf92180828252d610f26e242e1cb3c8e76c618b3b01816abc18ca91bce6a4509b9e3912fec0be9b06ad7272d757903069b106b0777c757e514d0647750a20a00bcd6e21c1cf6f7449103920ad8ea7c84a9765f8dd2ece295de73d107a729350a5f527aee830c41bc4c7ed9911e4e7ffd3e8bad98ecd98a30e10da5fb4d6d18199f53c76aeb07285d285789c39734fa1c9a893a214dcd5e50d6522b3ba68a85e70b6ad80845e6a171b727f94a60f8a2208562cd31250d8a86b2229f6bf69743d0e73a4c9a378fb4771385732de5be5af03ec82aa16faf079f8d38a24e7960571f3a7630e9a48f5022073feccfad813677abd73231b409b7053892c5db004607b8ebbe0370aaa80d88df18bfd68783173a57d1401b4ba9eabd90bf6a4492bbc47ce1e99fcb23f2b8be3fd9c45457c02e4617fb42d59a4a600e134ec22a03e50a7cdf33d2c500d226ea8f8ba3fb8a4ab30054aec9b768d6acaac3025f8e39f5f200ef193bb349a1c8cba676f2dd711a5ab9d5002e74b3b100f358ca64d9e6286b3747b5b0eeeb2b0c1c1727604ce4a8f53dd9d1313f4e7655043056b001c943784043ce9ebca52bef5577e071ad49a961203ed5be029a5ac4854ad04120a4c75d95189a76bfb1e7535541b99e26a223a746d9a5a49f61087cd4d64722dac86ecf73e306d82b705ca47461cc745014a5ac5c4529d8dfefe01d86fff2be5dc1f7aa03a130b88fbb11a7ee92d87d15dd6140a850398c998e51e5cad76cea9979de9bccc5c4a382b13c2f99be6160fecfa221dbe308552744ba275b806392106c07f43ca0655cb5aa7364f333c2d889c81639fdbe976099d42233769a057b74caffec82926cb6f2dc9537bbd1a644405a768368c607cdebcc604c8a585091c148b623139c672f1a809c616aca80f7d952e92e0748b3bc27b5431021ec7c9fb0efeea8b214bced4e3545bae607c36188ec46c822b6a35c71a987c0cec94961606f23c49b20c53362983c173462e6b5eb94ba3c469aa00f90a68966a42c5f0bb90fc28a69fc1d2826f8cead7bc78c081ada9a8db8c61d321dc59051d5aef93d1e5664182f666f61de9d45975911324374ac213128e39dd3c42843c9f94f4b99d057d4cfd995ef661332b9dbbdd160afd95f26c15b5114f1f9b795dd2f9b6d324092a37e9f13d29611bf62789c86f99ed9d0cfcf25bbc1080b41e1aa128e59db02f8e2394354d387029bc653c77a3bead7fc1ef3655265d2f0de841f8b631ca4e98277fc3b0edf3cca65e0ab74b98dabfabe5d660d3a1b78a9fadc2ea0ac8f7729fba2eefc61dd735524e1f07de967519b7edf46b83cf256a61271536744bc26593331388ac0a22d78f20ecf6fdb68fe4889db5b0c50d0b41e8ea5582f5cc23299948af71517cbdf5d06fc8e96fbdd61d5fd8702ce389bdace51e824255c393a52c43cbbcb8e8520cd788a159ca5f01ae2e6b3f930cadc2e13c5f09ad813af59e69754670acd883c35cca4189f417226623e2747b2e06e1bd66fd72d3d8a46b0c47e0b8307852af3e0dad41bdd2259caf4373ca620cfcc62512266510b74030e7c3a11781f5e475a965c27ab827e79f355e193aeff08f755393fcb5f1129db3ab9791df9d76da78d17ab05e09feef62d10f076b39da06b94e73dc9d3de3792177411f85a24a59ab44ccb2d52c8a528044229e725806918d050eb5c9dc1232ea8ab1201470dbf09dd22065efbabb7d67d6e105644d5f2f0bdad1453799aefd3415032b7e2a3bf0cf86a619ec744abfb7321873c3c0cd2051915a3c0e3965a5d664e1bc6a9b971950c835612b7ee6e445210d179fc2f8552c62fa88e9c19c007508a05ab4f1af6fd3fc64fdd25fdbec89beda0d39a01abdd18e3bf324944ff4c2c3525c99144cf089414a51d53f4ca92608b5f0bc44a25b848b9712ba9cad6607821594f6c0d8f31abff97b9c0623db878bb9d6c395cbc320b82d92520fbce18494b29b06d44ee6e0a87f31b883171d9b599e03b794beb5fa144ad88357b0c2136bfb46f16c76f377d534ab66659d8d56be744e11d15e6ada5f62e763fe122812afc24632b7953f11b6b163e2418fc0d05a4ca05669a7392fabca725ea5ec85bbf00e50d9253b42ebb228ebfc832279bce00ae98c51cbe38b6f2468f3f74d423256ec475399eea465b3ef7943eccfdacf8e42d627ee6abc83b1ff4a979fcaa959d85420903bdd1b3cab83e78fd7782be50d96561b8a0eaaa1ccd6ca80d81bff1622f7798e9b2cc8b3b1fdf4dc9452161212abd2897cae0a9d6e6fdca42af2d04e425c71bd752cf4585c04386c74fbaf0425fd5537f37e9bd4571ef3292d411979e0f0f047707e4f968d827f2c4616df47b887370624db20a457a5e20581277229d33a56342fe75df407c18c86557d5d7166dfc5a8fe694d1889fba9bc1db5de751a6f9bd007c5d4144021ddaf8be5a15d60c90d3623371a92b5a3776504df337c77ec2c3ddd44200aaa5c187c5d954f56caf7799aa32bf4816f9ec619effc43f0fe0f808bd6bb77284811f9958e49cd8654f55e9f6a3b6ba96469b945562faa6580ae575703eef89eb417ef05530d22804aedc87def5ad8e61df0cb712ed4bc40f8291470578ade3147d6b33edb97c3213e96cb4a4bbb7e6a0dfe0c2e323a287af3df067e1095fed2d2df8b4b8b1f37f15b59ec44a5da495752e4edfa088560b7a470b246d75352884954e152f519dac843fe2aa0622e4fddc270b7136c4ae9a29a05105b53255471eea98b11523a5d8adfd3f69ae68b7be98b1a7c2933cb74df86fbd69681e183fd120597afdff93d5a3ef123219bdae69c31e283ed6c7d6a461ffbcfd1751a27c301e75bfa8c227a8d0a7ba3b0ec833e444572ef703d1fa8bb4201e8d6119693c9b61af53bb77d5302753c1161ea3195d68b3f85f7a7a66c6d58ab280624994d125ac85bfac5270004a22104c0fe3d1e9459267684f1d8c9128e9bb6eda922468b1ef9fd5ea3a8819c4d55b0daba7c1dda2a0d75fa6528f01132597731e8fe0d09b6cdda06f4d8dd29a0c21d671b06246910557bfa2811c106f4eb3a64c572347a6e5e0a9c3c4582051f5f03d5c96ee42ffdcfcd7cc5dd3ad201cbc74d4b65825d0c4e7c8e9cf95dc2c2d1bb4db61432789fe751817bb7dae3c7fdb386f124d2df9adcec23da051db5db0c052eb4f0f9632e5b2f3893afeb71742eb10eca043bb512cd5701f4aca5be7f68f3fced220e4c4dc750bfd3a84a773605d20944ed8a910f9b17bad74f5ebf2dc55fc712e195e27d62010c2927be45e5f868df11dd4903cd2655d15b4d4f2bf2c5d23d60da089377f0ce5ed2051e37b8f071a2c42a412f9409f8365a09adb3a619e513ed5ae7998f9bdc6d8c31b3735e5f5f46590439a42f1f6c0554909499759c02cc880898628a6515210ae3c17bddc8a122ba2838b4a3fe1df9d972fab714e5a6bb939a2e757297727ae3c723b34cf61242a15132156e949b07c8815b94dfffc7e58f859e0d40eb44ea9f22e82095925d06d8c74c33d3f9c3a63746012236acebbd9f86859a841b8f22fb3d67a5ff2ffd6823dedbc1b71c75dfaac1efb933e4d5d47b14fdde5f17dda2652a0117ad28f4154f177f892c21cdeb965f1423f25081fb3d00625a280b61ae3cc8c35bc1235d0fa71c2ef0116e8532a7f41e5a87c87c563b8f479f23c8f637566565023dda11ccb98344959df3948f3b6543528d3bdfe1dfe3c2fc61a5f2de47f0ad7769c11f20cb5aadea1ebbbd3e47cdc789fe8dd556edff60a6fcca476239fdddb6f44df80d91bf18ad14ab79d62f47f265c5043f361482f14b434fa50ba30bc975d60ee3055f3c2bcac1545ce8b73ecd51190dc0dcbecf3b5c22e48ef030c8928dfe5721b0d39c8f54cb2ae249c37c4c98f2b309780cfd3e6c895fe3fbb8084cf61d6101a13fc400f3e88eb7bb788d32770502f5b6c717fec99174994bbcd593e174fb32213a0d61fa2ccba67a9bb2ecd3e95876aa2981901f708da339a37132dc11b5d773101fe00d37042f3bb35a7e9e67d6521200908f5d4b40a728d28375827948d7466a77346a5c7adaeae3fc23e46b31c6fefeb7df925cfeb3682785dc89585f3524df5a84d2878960da1da6afcb3cc9883212613d2b4c1fc7d6660613bd82676ce72437033ddd52ab92af7929d07cc68b58e79a42809de2fa5beb3d8fbb5646a7035055a295553b860f0540bf7f9fcb12c05036d5ab66adc1d92a7aa22bb0784429d0f8635a7b8ee9e380d552182a0113a9c97c0f09c9e05bfd2d84e82a5193d5b3a035b1e25aa749cd6ea2bf61ebb41c954b5e49739b6b09ab829c308f6d2745a718092d6d6e2c7c61cd086a73e14ce0b1a6d80ab2d561b6359d83e38276465f4f7f7000000000000000000fcffffff00"/4096, 0x1000, 0x2}, {&(0x7f0000001180)="fa4a369890d736709a5aa6428b6371a691b007dce553e85e0dc623679c12041eac23ca9674f1d525b585593823a1d3014f513c11d5f5716067e40fbb41aea59c74ba9ded9ea5a723541b4acdde937ad92e0f270fe99c92f5e41515e99d1427fda7460ab860ebda8767bc62706c389f208147b67aa9e9344ec3c2fe084226235b12e900ce7363886f72342143b4819ddffb2b82930beebee2b0e20e46713dc19a6f204a0a985cf322", 0xa8, 0x9}, {&(0x7f0000001240)="3e16e8c5666120ea558d21913b533b67b451", 0x12, 0x200}], 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$VT_WAITACTIVE(r3, 0x5607) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$SECCOMP_IOCTL_NOTIF_RECV(r5, 0xc0502100, &(0x7f0000000040)) [ 1527.483470] lowmem_reserve[]: 0 0 0 0 0 [ 1527.509400] Node 1 Normal free:2145572kB min:53612kB low:67012kB high:80412kB active_anon:1217656kB inactive_anon:16kB active_file:28944kB inactive_file:25476kB unevictable:0kB writepending:188kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12832kB pagetables:28764kB bounce:0kB free_pcp:812kB local_pcp:372kB free_cma:0kB [ 1527.551072] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) 07:20:07 executing program 3: r0 = socket$inet6(0xa, 0x801, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x12) [ 1527.588539] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1527.628118] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1527.647815] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1527.649560] CPU: 0 PID: 25588 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1527.661120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1527.670477] Call Trace: [ 1527.673073] dump_stack+0x13e/0x194 [ 1527.676696] warn_alloc.cold+0x96/0x1af [ 1527.677908] lowmem_reserve[]: [ 1527.680662] ? zone_watermark_ok_safe+0x280/0x280 [ 1527.680683] ? wait_for_completion+0x390/0x390 [ 1527.680696] __alloc_pages_slowpath+0x2114/0x26c0 [ 1527.680718] ? warn_alloc+0xf0/0xf0 [ 1527.680728] ? find_held_lock+0x2d/0x110 [ 1527.680740] ? fs_reclaim_acquire+0x10/0x10 [ 1527.680757] __alloc_pages_nodemask+0x5d3/0x700 [ 1527.680769] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1527.680778] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1527.693937] 0 [ 1527.698192] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1527.698217] alloc_pages_current+0xe7/0x1e0 [ 1527.729191] 0 [ 1527.731577] kvm_mmu_create+0xd1/0x1c0 [ 1527.731597] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1527.731608] ? alloc_pages_current+0xef/0x1e0 [ 1527.731620] kvm_vcpu_init+0x26d/0x360 [ 1527.731632] vmx_create_vcpu+0xf3/0x2900 [ 1527.731648] ? __mutex_unlock_slowpath+0x75/0x780 [ 1527.731658] ? futex_wake+0x11c/0x3d0 [ 1527.731668] ? handle_rdmsr+0x6b0/0x6b0 [ 1527.731681] kvm_vm_ioctl+0x49c/0x1430 [ 1527.731693] ? __lock_acquire+0x5f7/0x4620 [ 1527.731704] ? kvm_vcpu_release+0xa0/0xa0 [ 1527.744683] 0 [ 1527.745981] ? trace_hardirqs_on+0x10/0x10 [ 1527.745998] ? trace_hardirqs_on+0x10/0x10 [ 1527.746012] ? save_trace+0x290/0x290 07:20:07 executing program 3: timer_create(0x2, &(0x7f0000000000)={0x0, 0x12, 0x1}, &(0x7f00009b1ffc)=0x0) timer_settime(0x0, 0x0, &(0x7f0000000040)={{}, {0x77359400}}, 0x0) timer_settime(r0, 0x0, &(0x7f00000000c0)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0) write$FUSE_ATTR(0xffffffffffffffff, 0x0, 0x0) perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x50d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @perf_bp={&(0x7f0000000100)}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r2, &(0x7f0000000080)={0xa, 0x8000002}, 0x1c) sendto$inet6(r2, 0x0, 0x0, 0x20000001, &(0x7f0000000040)={0xa, 0x2}, 0x1c) splice(r2, 0x0, r1, 0x0, 0x1000000000000003, 0x0) dup(0xffffffffffffffff) fsetxattr$trusted_overlay_nlink(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) connect$inet6(0xffffffffffffffff, 0x0, 0x0) ioctl$TCSETSW(0xffffffffffffffff, 0x5403, 0x0) sendmsg$inet(0xffffffffffffffff, 0x0, 0x0) syz_open_dev$loop(0x0, 0x0, 0x0) ioctl$BLKTRACETEARDOWN(0xffffffffffffffff, 0x1276, 0x0) fcntl$setsig(0xffffffffffffffff, 0xa, 0x0) ioctl$sock_SIOCSIFVLAN_GET_VLAN_INGRESS_PRIORITY_CMD(0xffffffffffffffff, 0x8983, 0x0) sendto$packet(r2, &(0x7f0000000140)="e378", 0x2, 0x4044057, 0x0, 0x0) [ 1527.774792] 0 [ 1527.774871] ? __might_fault+0x104/0x1b0 [ 1527.803097] ? kvm_vcpu_release+0xa0/0xa0 [ 1527.807270] do_vfs_ioctl+0x75a/0xfe0 [ 1527.807894] 0 [ 1527.811065] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1527.811077] ? ioctl_preallocate+0x1a0/0x1a0 [ 1527.811094] ? security_file_ioctl+0x76/0xb0 [ 1527.811102] ? security_file_ioctl+0x83/0xb0 [ 1527.811112] SyS_ioctl+0x7f/0xb0 [ 1527.811120] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1527.811133] do_syscall_64+0x1d5/0x640 [ 1527.811149] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1527.811156] RIP: 0033:0x45c849 [ 1527.811161] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1527.811171] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1527.811178] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1527.830915] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1527.830921] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1527.830926] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1527.903614] CPU: 1 PID: 25583 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1527.911535] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1527.920894] Call Trace: [ 1527.923493] dump_stack+0x13e/0x194 [ 1527.927134] warn_alloc.cold+0x96/0x1af [ 1527.931119] ? zone_watermark_ok_safe+0x280/0x280 [ 1527.936009] ? wait_for_completion+0x390/0x390 [ 1527.940611] __alloc_pages_slowpath+0x2114/0x26c0 [ 1527.945481] ? warn_alloc+0xf0/0xf0 [ 1527.949121] ? find_held_lock+0x2d/0x110 [ 1527.953197] ? fs_reclaim_acquire+0x10/0x10 [ 1527.957539] __alloc_pages_nodemask+0x5d3/0x700 [ 1527.962216] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1527.967242] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1527.972097] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1527.977131] alloc_pages_current+0xe7/0x1e0 [ 1527.981470] kvm_mmu_create+0xd1/0x1c0 [ 1527.985371] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1527.989705] ? alloc_pages_current+0xef/0x1e0 [ 1527.994217] kvm_vcpu_init+0x26d/0x360 [ 1527.998115] vmx_create_vcpu+0xf3/0x2900 [ 1528.002189] ? __mutex_unlock_slowpath+0x75/0x780 [ 1528.007047] ? futex_wake+0x11c/0x3d0 [ 1528.010859] ? handle_rdmsr+0x6b0/0x6b0 [ 1528.014849] kvm_vm_ioctl+0x49c/0x1430 [ 1528.018748] ? __lock_acquire+0x5f7/0x4620 [ 1528.022990] ? kvm_vcpu_release+0xa0/0xa0 [ 1528.027150] ? trace_hardirqs_on+0x10/0x10 [ 1528.031404] ? trace_hardirqs_on+0x10/0x10 [ 1528.035655] ? save_trace+0x290/0x290 [ 1528.039485] ? __might_fault+0x104/0x1b0 [ 1528.043560] ? kvm_vcpu_release+0xa0/0xa0 [ 1528.047855] do_vfs_ioctl+0x75a/0xfe0 [ 1528.051670] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1528.056434] ? ioctl_preallocate+0x1a0/0x1a0 [ 1528.060860] ? security_file_ioctl+0x76/0xb0 [ 1528.065281] ? security_file_ioctl+0x83/0xb0 [ 1528.069702] SyS_ioctl+0x7f/0xb0 [ 1528.073077] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1528.077230] do_syscall_64+0x1d5/0x640 [ 1528.081130] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1528.086324] RIP: 0033:0x45c849 [ 1528.089513] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1528.097228] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1528.104509] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1528.111785] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1528.119061] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1528.126342] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1528.238894] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1528.280480] Node 0 DMA32: 709*4kB (UME) 1414*8kB (UMEH) 789*16kB (UMEH) 240*32kB (UMEH) 6*64kB (ME) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34836kB [ 1528.339057] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1528.378936] Node 1 Normal: 86*4kB (UM) 239*8kB (UME) 135*16kB (UME) 181*32kB (UME) 71*64kB (UME) 14*128kB (UME) 12*256kB (UME) 5*512kB (UM) 8*1024kB (UME) 5*2048kB (UE) 514*4096kB (UM) = 2145952kB [ 1528.435710] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1528.458330] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1528.479891] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1528.501597] Mem-Info: [ 1528.507478] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1528.508235] active_anon:797187 inactive_anon:200 isolated_anon:0 [ 1528.508235] active_file:7243 inactive_file:6376 isolated_file:0 [ 1528.508235] unevictable:0 dirty:48 writeback:0 unstable:0 [ 1528.508235] slab_reclaimable:12676 slab_unreclaimable:132717 [ 1528.508235] mapped:59088 shmem:541 pagetables:16369 bounce:0 [ 1528.508235] free:547541 free_pcp:416 free_cma:0 [ 1528.537428] 14160 total pagecache pages [ 1528.575197] 0 pages in swap cache [ 1528.587541] Swap cache stats: add 0, delete 0, find 0/0 [ 1528.603827] Free swap = 0kB [ 1528.613811] Total swap = 0kB [ 1528.620164] 1965979 pages RAM [ 1528.626743] 0 pages HighMem/MovableOnly [ 1528.638993] 339049 pages reserved [ 1528.655703] 0 pages cma reserved 07:20:08 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$VHOST_SET_FEATURES(r2, 0x4008af00, &(0x7f0000000080)=0x1d) r3 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = dup3(r0, r3, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r5, r4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:20:08 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:08 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = getpid() sched_setattr(r1, &(0x7f00000000c0)={0x38, 0x2, 0x0, 0x0, 0x9}, 0x0) ptrace$setopts(0x4206, r1, 0x2, 0x8) r2 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) [ 1528.674984] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:28kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1528.853655] Node 1 active_anon:1217688kB inactive_anon:16kB active_file:28944kB inactive_file:25496kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27420kB dirty:188kB writeback:0kB shmem:960kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1528.992979] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1529.029757] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1529.078504] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1529.095634] CPU: 1 PID: 25645 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1529.102751] lowmem_reserve[]: [ 1529.103543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1529.103545] 0 2557 [ 1529.106640] Call Trace: [ 1529.106659] dump_stack+0x13e/0x194 [ 1529.106674] warn_alloc.cold+0x96/0x1af [ 1529.106684] ? zone_watermark_ok_safe+0x280/0x280 [ 1529.106703] ? wait_for_completion+0x390/0x390 [ 1529.131043] 2557 [ 1529.133290] __alloc_pages_slowpath+0x2114/0x26c0 [ 1529.133315] ? warn_alloc+0xf0/0xf0 [ 1529.140210] 2557 [ 1529.144777] ? find_held_lock+0x2d/0x110 [ 1529.144790] ? fs_reclaim_acquire+0x10/0x10 [ 1529.144811] __alloc_pages_nodemask+0x5d3/0x700 [ 1529.144823] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1529.144833] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1529.154091] 2557 [ 1529.154639] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1529.168627] alloc_pages_current+0xe7/0x1e0 [ 1529.168727] kvm_mmu_create+0xd1/0x1c0 [ 1529.182651] Node 0 [ 1529.184953] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1529.184966] ? alloc_pages_current+0xef/0x1e0 [ 1529.184979] kvm_vcpu_init+0x26d/0x360 [ 1529.184991] vmx_create_vcpu+0xf3/0x2900 [ 1529.185006] ? __mutex_unlock_slowpath+0x75/0x780 [ 1529.192278] DMA32 free:34836kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:728kB local_pcp:424kB free_cma:0kB [ 1529.195421] ? futex_wake+0x11c/0x3d0 [ 1529.195435] ? handle_rdmsr+0x6b0/0x6b0 [ 1529.195452] kvm_vm_ioctl+0x49c/0x1430 [ 1529.195465] ? __lock_acquire+0x5f7/0x4620 [ 1529.203372] lowmem_reserve[]: [ 1529.203821] ? kvm_vcpu_release+0xa0/0xa0 [ 1529.213514] 0 [ 1529.241205] ? trace_hardirqs_on+0x10/0x10 [ 1529.241221] ? trace_hardirqs_on+0x10/0x10 [ 1529.241234] ? save_trace+0x290/0x290 [ 1529.241246] ? __might_fault+0x104/0x1b0 [ 1529.241261] ? kvm_vcpu_release+0xa0/0xa0 [ 1529.241273] do_vfs_ioctl+0x75a/0xfe0 [ 1529.241290] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1529.275276] 0 [ 1529.278407] ? ioctl_preallocate+0x1a0/0x1a0 [ 1529.278428] ? security_file_ioctl+0x76/0xb0 [ 1529.278438] ? security_file_ioctl+0x83/0xb0 [ 1529.291431] 0 [ 1529.295158] SyS_ioctl+0x7f/0xb0 [ 1529.295169] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1529.295182] do_syscall_64+0x1d5/0x640 [ 1529.300367] 0 [ 1529.301375] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1529.312513] 0 [ 1529.315337] RIP: 0033:0x45c849 [ 1529.315342] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1529.315353] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1529.315359] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000006 [ 1529.315364] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1529.315372] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1529.323208] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1529.457088] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1529.523934] lowmem_reserve[]: 0 0 0 0 0 [ 1529.533727] Node 1 Normal free:2143944kB min:53612kB low:67012kB high:80412kB active_anon:1217596kB inactive_anon:16kB active_file:28944kB inactive_file:25524kB unevictable:0kB writepending:20kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12768kB pagetables:28672kB bounce:0kB free_pcp:944kB local_pcp:600kB free_cma:0kB [ 1529.661334] lowmem_reserve[]: 0 0 0 0 0 [ 1529.669965] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1529.701759] Node 0 DMA32: 709*4kB (UME) 1412*8kB (UMEH) 788*16kB (UMEH) 240*32kB (UMEH) 6*64kB (ME) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34804kB [ 1529.733052] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1529.756258] Node 1 Normal: 86*4kB (UME) 278*8kB (UME) 78*16kB (UME) 191*32kB (UME) 71*64kB (UME) 20*128kB (UME) 12*256kB (UME) 5*512kB (UM) 8*1024kB (UME) 5*2048kB (UE) 514*4096kB (UM) = 2146440kB [ 1529.794149] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1529.814057] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1529.832791] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1529.852216] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1529.869814] 14166 total pagecache pages [ 1529.878401] 0 pages in swap cache [ 1529.886398] Swap cache stats: add 0, delete 0, find 0/0 [ 1529.897502] Free swap = 0kB [ 1529.904013] Total swap = 0kB [ 1529.910521] 1965979 pages RAM 07:20:10 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) bind$unix(r3, &(0x7f0000000040)=@file={0x0, './file0\x00'}, 0x6e) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) [ 1529.917068] 0 pages HighMem/MovableOnly [ 1529.926831] 339049 pages reserved [ 1529.934854] 0 pages cma reserved 07:20:10 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0x240040, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff}) r5 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) r7 = fcntl$dupfd(r6, 0x406, r4) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) shmctl$IPC_RMID(0x0, 0x0) shmctl$IPC_STAT(0x0, 0x2, &(0x7f00000003c0)=""/213) shmctl$SHM_STAT_ANY(0x0, 0xf, &(0x7f0000000100)=""/14) ioctl$VIDIOC_ENUMAUDOUT(r7, 0xc0345642, &(0x7f0000000080)={0x1, "36068986b5208e0264f4c79dec33892850dacce3aaa82b303cec326641e646de", 0x2, 0x1}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], 0x1) 07:20:10 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:10 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) r7 = fcntl$dupfd(r6, 0x0, r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) ioctl$sock_SIOCSIFVLAN_GET_VLAN_VID_CMD(r7, 0x8983, &(0x7f0000000080)) 07:20:10 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$SNDRV_SEQ_IOCTL_CLIENT_ID(r3, 0x80045301, &(0x7f0000000040)) [ 1530.195521] warn_alloc_show_mem: 1 callbacks suppressed [ 1530.195525] Mem-Info: [ 1530.238594] active_anon:797192 inactive_anon:200 isolated_anon:0 [ 1530.238594] active_file:7243 inactive_file:6389 isolated_file:0 [ 1530.238594] unevictable:0 dirty:41 writeback:0 unstable:0 [ 1530.238594] slab_reclaimable:12658 slab_unreclaimable:132396 [ 1530.238594] mapped:59094 shmem:541 pagetables:16424 bounce:0 [ 1530.238594] free:547798 free_pcp:390 free_cma:0 07:20:10 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r2, 0x0, r2) ioctl$sock_SIOCSIFVLAN_GET_VLAN_EGRESS_PRIORITY_CMD(r2, 0x8983, &(0x7f0000000040)) 07:20:10 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x2400, 0x6) r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)={0x7, 0x4, 0x8, 0xf1a}, 0x2c) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={r5, 0x28, &(0x7f0000000240)={0x0, 0x0}}, 0x10) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080)={r6}, 0xc) bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000080)={r6, 0xfff, 0x18}, 0xc) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) ioctl$IMGETDEVINFO(r4, 0x80044944, &(0x7f00000000c0)={0x7ff}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='\f'], 0x1) r7 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000100)='/selinux/checkreqprot\x00', 0x0, 0x0) ioctl$DRM_IOCTL_RES_CTX(r4, 0xc0106426, &(0x7f0000000180)={0x5a, &(0x7f0000000140)=[{}, {}, {0x0}, {}]}) ioctl$DRM_IOCTL_RM_CTX(r7, 0xc0086421, &(0x7f00000001c0)={r8, 0x2}) [ 1530.375945] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1530.412178] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1530.420635] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:28kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:0kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1530.460165] CPU: 1 PID: 25684 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1530.468108] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1530.477464] Call Trace: [ 1530.480063] dump_stack+0x13e/0x194 [ 1530.483699] warn_alloc.cold+0x96/0x1af [ 1530.487694] ? zone_watermark_ok_safe+0x280/0x280 [ 1530.492562] ? wait_for_completion+0x390/0x390 [ 1530.497151] __alloc_pages_slowpath+0x2114/0x26c0 [ 1530.502018] ? warn_alloc+0xf0/0xf0 [ 1530.505653] ? find_held_lock+0x2d/0x110 [ 1530.509715] ? fs_reclaim_acquire+0x10/0x10 [ 1530.514050] __alloc_pages_nodemask+0x5d3/0x700 [ 1530.518732] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1530.524355] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1530.529195] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1530.534224] alloc_pages_current+0xe7/0x1e0 [ 1530.538554] kvm_mmu_create+0xd1/0x1c0 [ 1530.542448] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1530.546771] ? alloc_pages_current+0xef/0x1e0 [ 1530.551272] kvm_vcpu_init+0x26d/0x360 [ 1530.551951] syz-executor.0: [ 1530.555164] vmx_create_vcpu+0xf3/0x2900 [ 1530.555183] ? __mutex_unlock_slowpath+0x75/0x780 [ 1530.555195] ? futex_wake+0x11c/0x3d0 [ 1530.555206] ? handle_rdmsr+0x6b0/0x6b0 [ 1530.555223] kvm_vm_ioctl+0x49c/0x1430 [ 1530.566071] page allocation failure: order:0 [ 1530.567110] ? __lock_acquire+0x5f7/0x4620 [ 1530.567124] ? kvm_vcpu_release+0xa0/0xa0 [ 1530.567137] ? trace_hardirqs_on+0x10/0x10 [ 1530.567154] ? trace_hardirqs_on+0x10/0x10 [ 1530.583860] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1530.587542] ? save_trace+0x290/0x290 [ 1530.587554] ? __might_fault+0x104/0x1b0 [ 1530.587573] ? kvm_vcpu_release+0xa0/0xa0 [ 1530.587586] do_vfs_ioctl+0x75a/0xfe0 [ 1530.587599] ? selinux_file_mprotect+0x5c0/0x5c0 07:20:10 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$SIOCX25GDTEFACILITIES(r2, 0x89ea, &(0x7f0000000040)) fcntl$dupfd(r3, 0x406, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x2) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) [ 1530.620101] (null) [ 1530.622401] ? ioctl_preallocate+0x1a0/0x1a0 [ 1530.622423] ? security_file_ioctl+0x76/0xb0 [ 1530.622432] ? security_file_ioctl+0x83/0xb0 [ 1530.622447] SyS_ioctl+0x7f/0xb0 [ 1530.634120] syz-executor.0 cpuset= [ 1530.638127] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1530.638143] do_syscall_64+0x1d5/0x640 [ 1530.638161] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1530.638171] RIP: 0033:0x45c849 [ 1530.654950] syz0 [ 1530.657275] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1530.671278] mems_allowed=0-1 [ 1530.675298] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1530.675305] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1530.675310] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1530.675314] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1530.675319] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1530.758132] Node 1 active_anon:1217808kB inactive_anon:16kB active_file:28944kB inactive_file:25548kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27444kB dirty:0kB writeback:0kB shmem:960kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1530.802704] CPU: 0 PID: 25696 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1530.810622] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1530.819991] Call Trace: [ 1530.822593] dump_stack+0x13e/0x194 [ 1530.826234] warn_alloc.cold+0x96/0x1af [ 1530.830216] ? zone_watermark_ok_safe+0x280/0x280 [ 1530.834658] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1530.835070] ? wait_for_completion+0x390/0x390 [ 1530.835085] __alloc_pages_slowpath+0x2114/0x26c0 [ 1530.871396] ? warn_alloc+0xf0/0xf0 [ 1530.875037] ? find_held_lock+0x2d/0x110 [ 1530.879105] ? fs_reclaim_acquire+0x10/0x10 [ 1530.883443] __alloc_pages_nodemask+0x5d3/0x700 [ 1530.888116] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1530.893134] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1530.894755] lowmem_reserve[]: [ 1530.897971] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1530.897993] alloc_pages_current+0xe7/0x1e0 [ 1530.898011] kvm_mmu_create+0xd1/0x1c0 [ 1530.908553] 0 [ 1530.910409] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1530.910420] ? alloc_pages_current+0xef/0x1e0 [ 1530.910431] kvm_vcpu_init+0x26d/0x360 [ 1530.910443] vmx_create_vcpu+0xf3/0x2900 [ 1530.910458] ? __mutex_unlock_slowpath+0x75/0x780 [ 1530.910469] ? futex_wake+0x11c/0x3d0 [ 1530.910481] ? handle_rdmsr+0x6b0/0x6b0 [ 1530.916817] 2557 [ 1530.920489] kvm_vm_ioctl+0x49c/0x1430 [ 1530.920505] ? __lock_acquire+0x5f7/0x4620 [ 1530.920516] ? kvm_vcpu_release+0xa0/0xa0 [ 1530.920526] ? trace_hardirqs_on+0x10/0x10 [ 1530.920540] ? trace_hardirqs_on+0x10/0x10 [ 1530.920552] ? save_trace+0x290/0x290 [ 1530.920562] ? __might_fault+0x104/0x1b0 [ 1530.920576] ? kvm_vcpu_release+0xa0/0xa0 [ 1530.920588] do_vfs_ioctl+0x75a/0xfe0 [ 1530.920604] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1530.930607] 2557 [ 1530.933037] ? ioctl_preallocate+0x1a0/0x1a0 [ 1530.933058] ? security_file_ioctl+0x76/0xb0 [ 1530.933069] ? security_file_ioctl+0x83/0xb0 [ 1530.942634] 2557 [ 1530.945654] SyS_ioctl+0x7f/0xb0 [ 1530.945664] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1530.945677] do_syscall_64+0x1d5/0x640 [ 1530.951317] 2557 [ 1530.951611] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1530.964176] RIP: 0033:0x45c849 [ 1530.964182] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1530.964193] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1530.964198] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1530.964206] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 07:20:11 executing program 3: r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) write$cgroup_type(r0, &(0x7f00000009c0)='threaded\x00', 0xffffff77) unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) clone(0x1000109, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) mount$fuseblk(&(0x7f0000000180)='/dev/loop0\x00', &(0x7f00000003c0)='./file0\x00', 0x0, 0x2011, 0x0) ftruncate(r0, 0x0) [ 1530.970866] Node 0 [ 1530.972246] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1530.972252] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1531.342940] DMA32 free:34756kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:36kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:820kB local_pcp:336kB free_cma:0kB [ 1531.387129] Mem-Info: [ 1531.409591] active_anon:797177 inactive_anon:200 isolated_anon:0 [ 1531.409591] active_file:7245 inactive_file:8388 isolated_file:0 [ 1531.409591] unevictable:0 dirty:2053 writeback:0 unstable:0 [ 1531.409591] slab_reclaimable:12719 slab_unreclaimable:132598 [ 1531.409591] mapped:59069 shmem:542 pagetables:16376 bounce:0 [ 1531.409591] free:545507 free_pcp:432 free_cma:0 [ 1531.493025] lowmem_reserve[]: 0 0 0 0 0 [ 1531.500888] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1531.560148] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:36kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1531.606766] lowmem_reserve[]: 0 0 0 0 0 [ 1531.614981] Node 1 Normal free:2131632kB min:53612kB low:67012kB high:80412kB active_anon:1217648kB inactive_anon:16kB active_file:28944kB inactive_file:37752kB unevictable:0kB writepending:12348kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12672kB pagetables:28640kB bounce:0kB free_pcp:1092kB local_pcp:376kB free_cma:0kB [ 1531.663337] Node 1 active_anon:1217648kB inactive_anon:16kB active_file:28944kB inactive_file:38252kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27444kB dirty:12908kB writeback:0kB shmem:964kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1531.724711] lowmem_reserve[]: 0 0 0 0 0 [ 1531.733242] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1531.755875] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1531.799177] Node 0 DMA32: 709*4kB (UME) 1408*8kB (UME) 787*16kB (UMEH) 240*32kB (UMEH) 6*64kB (ME) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34756kB [ 1531.829459] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1531.842828] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1531.859049] Node 0 DMA32 free:34756kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:36kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:896kB local_pcp:336kB free_cma:0kB [ 1531.895197] Node 1 Normal: 136*4kB (UME) 104*8kB (UM) 73*16kB (UE) 170*32kB (UM) 67*64kB (UME) 3*128kB (UM) 8*256kB (UME) 3*512kB (UM) 4*1024kB (UE) 5*2048kB (UE) 512*4096kB (UM) = 2127728kB [ 1531.933997] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1531.962705] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1531.986240] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1532.017682] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1532.036847] lowmem_reserve[]: 0 0 0 0 0 [ 1532.047661] 16153 total pagecache pages [ 1532.052866] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1532.091457] 0 pages in swap cache [ 1532.099577] Swap cache stats: add 0, delete 0, find 0/0 [ 1532.114757] Free swap = 0kB [ 1532.123846] Total swap = 0kB [ 1532.131395] 1965979 pages RAM [ 1532.137949] 0 pages HighMem/MovableOnly 07:20:12 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/kvm\x00', 0xb1ae33aaec56cdf1, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000080)=ANY=[@ANYBLOB="82bfe968663b69d9bbf90272"], 0x1) 07:20:12 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$sock_inet_udp_SIOCINQ(r3, 0x541b, &(0x7f0000000040)) 07:20:12 executing program 5: shutdown(0xffffffffffffffff, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(0xffffffffffffffff, 0x100000000000012) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) ioctl(r0, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:12 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) pipe2(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}, 0x4000) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) ioctl$KVM_HYPERV_EVENTFD(r3, 0x4018aebd, &(0x7f00000000c0)={0x1, r5, 0x1}) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:20:12 executing program 3: r0 = socket$inet6(0xa, 0x801, 0x0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) [ 1532.148115] lowmem_reserve[]: 0 0 0 0 0 [ 1532.154778] 339049 pages reserved [ 1532.163841] 0 pages cma reserved [ 1532.167349] Node 1 Normal free:2146136kB min:53612kB low:67012kB high:80412kB active_anon:1217672kB inactive_anon:16kB active_file:28944kB inactive_file:25672kB unevictable:0kB writepending:348kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12512kB pagetables:28600kB bounce:0kB free_pcp:1540kB local_pcp:728kB free_cma:0kB 07:20:12 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) prctl$PR_SET_MM(0x23, 0xa, &(0x7f0000ffc000/0x1000)=nil) [ 1532.274840] lowmem_reserve[]: 0 0 0 0 0 [ 1532.285926] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1532.320545] Node 0 DMA32: 678*4kB (UME) 1408*8kB (UME) 787*16kB (UMEH) 240*32kB (UMEH) 6*64kB (ME) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34632kB [ 1532.391951] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1532.460113] Node 1 Normal: 137*4kB (ME) 217*8kB (UME) 279*16kB (UM) 239*32kB (UM) 83*64kB (UME) 19*128kB (UM) 20*256kB (UME) 9*512kB (UM) 8*1024kB (UME) 5*2048kB (UE) 512*4096kB (UM) = 2147452kB [ 1532.535098] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1532.556268] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1532.583115] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1532.588792] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1532.598561] CPU: 0 PID: 25747 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1532.606468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1532.615830] Call Trace: [ 1532.618437] dump_stack+0x13e/0x194 [ 1532.619726] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1532.622099] warn_alloc.cold+0x96/0x1af [ 1532.622108] ? zone_watermark_ok_safe+0x280/0x280 [ 1532.622128] ? wait_for_completion+0x390/0x390 [ 1532.622140] __alloc_pages_slowpath+0x2114/0x26c0 [ 1532.622164] ? warn_alloc+0xf0/0xf0 [ 1532.652940] ? find_held_lock+0x2d/0x110 [ 1532.655539] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1532.657009] ? fs_reclaim_acquire+0x10/0x10 [ 1532.657033] __alloc_pages_nodemask+0x5d3/0x700 [ 1532.674591] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1532.679624] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1532.684481] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1532.686861] 14198 total pagecache pages [ 1532.689520] alloc_pages_current+0xe7/0x1e0 [ 1532.689535] kvm_mmu_create+0xd1/0x1c0 [ 1532.701717] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1532.706047] ? alloc_pages_current+0xef/0x1e0 [ 1532.708029] 0 pages in swap cache [ 1532.710549] kvm_vcpu_init+0x26d/0x360 [ 1532.710562] vmx_create_vcpu+0xf3/0x2900 [ 1532.710578] ? __mutex_unlock_slowpath+0x75/0x780 [ 1532.710589] ? futex_wake+0x11c/0x3d0 [ 1532.710599] ? handle_rdmsr+0x6b0/0x6b0 [ 1532.710612] kvm_vm_ioctl+0x49c/0x1430 [ 1532.710623] ? __lock_acquire+0x5f7/0x4620 [ 1532.710634] ? kvm_vcpu_release+0xa0/0xa0 [ 1532.718554] Swap cache stats: add 0, delete 0, find 0/0 [ 1532.722002] ? trace_hardirqs_on+0x10/0x10 [ 1532.722017] ? trace_hardirqs_on+0x10/0x10 [ 1532.722029] ? save_trace+0x290/0x290 [ 1532.722038] ? __might_fault+0x104/0x1b0 [ 1532.722053] ? kvm_vcpu_release+0xa0/0xa0 [ 1532.722066] do_vfs_ioctl+0x75a/0xfe0 [ 1532.722078] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1532.741283] Free swap = 0kB [ 1532.742845] ? ioctl_preallocate+0x1a0/0x1a0 [ 1532.742865] ? security_file_ioctl+0x76/0xb0 [ 1532.750150] Total swap = 0kB [ 1532.752365] ? security_file_ioctl+0x83/0xb0 [ 1532.752378] SyS_ioctl+0x7f/0xb0 [ 1532.752389] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1532.756607] 1965979 pages RAM [ 1532.760835] do_syscall_64+0x1d5/0x640 [ 1532.760855] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1532.760864] RIP: 0033:0x45c849 [ 1532.760868] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1532.760878] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1532.760883] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1532.760890] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1532.788073] 0 pages HighMem/MovableOnly [ 1532.788811] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1532.788819] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1532.804378] 339049 pages reserved [ 1533.046889] 0 pages cma reserved 07:20:13 executing program 4: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) ioctl$DRM_IOCTL_AGP_RELEASE(r1, 0x6431) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b75fb3488fd8015bba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377aba09e7b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047706865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) openat$thread_pidfd(0xffffffffffffff9c, &(0x7f0000000080)='/proc/thread-self\x00', 0x20000, 0x0) r5 = dup3(r2, r3, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r5, r4) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:20:13 executing program 5: shutdown(0xffffffffffffffff, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(0xffffffffffffffff, 0x100000000000012) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) ioctl(r0, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:13 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) clock_adjtime(0x7, &(0x7f0000000180)={0x80000000, 0x100000001, 0xc6ca, 0x6b3, 0x3, 0x55c, 0x7, 0x9, 0xa8, 0x2, 0x1, 0x3ff, 0x401, 0x3, 0x9, 0x80000000, 0x0, 0x81, 0x8, 0xd2, 0x1, 0x4, 0x9, 0x4, 0x7ff, 0x5}) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='}'], 0x1) ioctl$SIOCX25SSUBSCRIP(r5, 0x89e1, &(0x7f0000000080)={'veth0_virt_wifi\x00', 0x5, 0x3}) 07:20:13 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r0, 0x0, 0xffffffffffffffb5, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10) 07:20:13 executing program 3: perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x7e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) syz_mount_image$iso9660(&(0x7f0000000040)='iso9660\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) syz_open_procfs(0x0, 0x0) setsockopt$bt_hci_HCI_FILTER(0xffffffffffffffff, 0x0, 0x2, 0x0, 0x0) 07:20:13 executing program 5: shutdown(0xffffffffffffffff, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(0xffffffffffffffff, 0x100000000000012) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r0 = socket$netlink(0x10, 0x3, 0x0) ioctl(r0, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(0xffffffffffffffff, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:13 executing program 5: r0 = socket$inet6(0xa, 0x0, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1533.349522] ISOFS: Unable to identify CD-ROM format. [ 1533.392245] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1533.443739] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1533.457037] CPU: 0 PID: 25779 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1533.464958] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1533.474407] Call Trace: [ 1533.477004] dump_stack+0x13e/0x194 [ 1533.480624] warn_alloc.cold+0x96/0x1af [ 1533.484583] ? zone_watermark_ok_safe+0x280/0x280 [ 1533.489414] ? wait_for_completion+0x390/0x390 [ 1533.494008] __alloc_pages_slowpath+0x2114/0x26c0 [ 1533.498843] ? warn_alloc+0xf0/0xf0 [ 1533.502452] ? find_held_lock+0x2d/0x110 [ 1533.506495] ? fs_reclaim_acquire+0x10/0x10 [ 1533.510809] __alloc_pages_nodemask+0x5d3/0x700 [ 1533.515464] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1533.520485] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1533.525346] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1533.530371] alloc_pages_current+0xe7/0x1e0 [ 1533.534703] kvm_mmu_create+0xd1/0x1c0 [ 1533.538580] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1533.542891] ? alloc_pages_current+0xef/0x1e0 [ 1533.547377] kvm_vcpu_init+0x26d/0x360 [ 1533.551255] vmx_create_vcpu+0xf3/0x2900 [ 1533.555314] ? __mutex_unlock_slowpath+0x75/0x780 [ 1533.560142] ? futex_wake+0x11c/0x3d0 [ 1533.563928] ? handle_rdmsr+0x6b0/0x6b0 [ 1533.567905] kvm_vm_ioctl+0x49c/0x1430 [ 1533.571780] ? __lock_acquire+0x5f7/0x4620 [ 1533.575998] ? kvm_vcpu_release+0xa0/0xa0 [ 1533.580129] ? trace_hardirqs_on+0x10/0x10 [ 1533.584442] ? trace_hardirqs_on+0x10/0x10 [ 1533.588697] ? save_trace+0x290/0x290 [ 1533.592501] ? __might_fault+0x104/0x1b0 [ 1533.596596] ? kvm_vcpu_release+0xa0/0xa0 [ 1533.600743] do_vfs_ioctl+0x75a/0xfe0 [ 1533.604542] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1533.609288] ? ioctl_preallocate+0x1a0/0x1a0 [ 1533.613952] ? security_file_ioctl+0x76/0xb0 [ 1533.618356] ? security_file_ioctl+0x83/0xb0 [ 1533.622761] SyS_ioctl+0x7f/0xb0 [ 1533.626111] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1533.630071] do_syscall_64+0x1d5/0x640 [ 1533.633956] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1533.639133] RIP: 0033:0x45c849 [ 1533.642306] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1533.650038] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1533.657290] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000006 [ 1533.664543] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1533.671800] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1533.679055] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1533.761078] ISOFS: Unable to identify CD-ROM format. 07:20:13 executing program 5: r0 = socket$inet6(0xa, 0x0, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1533.783876] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) 07:20:13 executing program 3: mkdir(&(0x7f0000000340)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/fuse\x00', 0x2, 0x0) mount$fuse(0x0, &(0x7f0000000200)='./file0\x00', &(0x7f0000000240)='fuse\x00', 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) r1 = socket$inet6(0xa, 0x2, 0x0) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) mknod$loop(&(0x7f00000001c0)='./file0/file1\x00', 0x0, 0xffffffffffffffff) write$FUSE_NOTIFY_DELETE(r0, &(0x7f0000000040)={0x33, 0x6, 0x0, {0x1, 0x0, 0xa, 0x0, '/dev/fuse\x00'}}, 0x33) link(0x0, &(0x7f0000000080)='./file0/file1\x00') read$FUSE(r0, 0x0, 0x0) [ 1533.838367] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1533.865976] CPU: 1 PID: 25774 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1533.874054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1533.883525] Call Trace: [ 1533.886130] dump_stack+0x13e/0x194 [ 1533.889775] warn_alloc.cold+0x96/0x1af [ 1533.893847] ? zone_watermark_ok_safe+0x280/0x280 [ 1533.898802] ? wait_for_completion+0x390/0x390 [ 1533.903397] __alloc_pages_slowpath+0x2114/0x26c0 [ 1533.908256] ? warn_alloc+0xf0/0xf0 [ 1533.911892] ? find_held_lock+0x2d/0x110 [ 1533.915972] ? fs_reclaim_acquire+0x10/0x10 [ 1533.921269] __alloc_pages_nodemask+0x5d3/0x700 [ 1533.924669] warn_alloc_show_mem: 1 callbacks suppressed [ 1533.924673] Mem-Info: [ 1533.925941] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1533.925952] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1533.925961] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1533.925982] alloc_pages_current+0xe7/0x1e0 [ 1533.925996] kvm_mmu_create+0xd1/0x1c0 [ 1533.940799] active_anon:797244 inactive_anon:200 isolated_anon:0 [ 1533.940799] active_file:7269 inactive_file:6405 isolated_file:0 [ 1533.940799] unevictable:0 dirty:21 writeback:25 unstable:0 [ 1533.940799] slab_reclaimable:12827 slab_unreclaimable:132590 [ 1533.940799] mapped:59122 shmem:542 pagetables:16428 bounce:0 [ 1533.940799] free:547213 free_pcp:447 free_cma:0 [ 1533.943628] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1533.943641] ? alloc_pages_current+0xef/0x1e0 [ 1533.943655] kvm_vcpu_init+0x26d/0x360 [ 1533.943666] vmx_create_vcpu+0xf3/0x2900 [ 1533.943680] ? __mutex_unlock_slowpath+0x75/0x780 [ 1533.963005] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1533.990847] ? futex_wake+0x11c/0x3d0 [ 1533.990860] ? handle_rdmsr+0x6b0/0x6b0 [ 1533.990877] kvm_vm_ioctl+0x49c/0x1430 [ 1533.990891] ? __lock_acquire+0x5f7/0x4620 [ 1533.990901] ? kvm_vcpu_release+0xa0/0xa0 [ 1533.990910] ? trace_hardirqs_on+0x10/0x10 [ 1533.990924] ? trace_hardirqs_on+0x10/0x10 [ 1533.990937] ? save_trace+0x290/0x290 [ 1533.990951] ? __might_fault+0x104/0x1b0 [ 1534.034321] Node 1 active_anon:1217916kB inactive_anon:16kB active_file:29044kB inactive_file:25616kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27556kB dirty:180kB writeback:100kB shmem:964kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1534.040168] ? kvm_vcpu_release+0xa0/0xa0 [ 1534.040182] do_vfs_ioctl+0x75a/0xfe0 [ 1534.040194] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1534.040204] ? ioctl_preallocate+0x1a0/0x1a0 [ 1534.040225] ? security_file_ioctl+0x76/0xb0 [ 1534.052009] Node 0 [ 1534.056091] ? security_file_ioctl+0x83/0xb0 [ 1534.056107] SyS_ioctl+0x7f/0xb0 [ 1534.056116] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1534.056128] do_syscall_64+0x1d5/0x640 [ 1534.056144] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1534.071687] DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1534.072501] RIP: 0033:0x45c849 [ 1534.083021] lowmem_reserve[]: [ 1534.104313] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1534.104323] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1534.104329] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1534.104334] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1534.104340] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1534.104347] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1534.759873] 0 2557 2557 2557 2557 [ 1534.768721] Node 0 DMA32 free:33516kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:764kB local_pcp:728kB free_cma:0kB [ 1534.891357] warn_alloc_show_mem: 1 callbacks suppressed [ 1534.891361] Mem-Info: [ 1534.904747] lowmem_reserve[]: 0 0 0 0 0 [ 1534.920168] active_anon:797169 inactive_anon:198 isolated_anon:0 [ 1534.920168] active_file:7245 inactive_file:6410 isolated_file:0 [ 1534.920168] unevictable:0 dirty:19 writeback:8 unstable:0 [ 1534.920168] slab_reclaimable:12811 slab_unreclaimable:132463 [ 1534.920168] mapped:59114 shmem:542 pagetables:16362 bounce:0 [ 1534.920168] free:547667 free_pcp:503 free_cma:0 [ 1534.932151] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1535.110152] lowmem_reserve[]: 0 0 0 0 0 [ 1535.113945] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:4kB writeback:4kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1535.122807] Node 1 Normal free:2147304kB min:53612kB low:67012kB high:80412kB active_anon:1217552kB inactive_anon:16kB active_file:28948kB inactive_file:25652kB unevictable:0kB writepending:140kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12480kB pagetables:28444kB bounce:0kB free_pcp:992kB local_pcp:260kB free_cma:0kB [ 1535.237468] Node 1 active_anon:1217552kB inactive_anon:16kB active_file:28948kB inactive_file:25652kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27356kB dirty:140kB writeback:0kB shmem:964kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1535.325941] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1535.364535] lowmem_reserve[]: 0 0 0 0 0 [ 1535.389104] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1535.414994] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1535.430414] Node 0 DMA32 free:33640kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:752kB local_pcp:40kB free_cma:0kB [ 1535.468375] Node 0 DMA32: 459*4kB (UME) 1409*8kB (UME) 787*16kB (UMEH) 240*32kB (UMEH) 6*64kB (ME) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 33764kB [ 1535.551543] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1535.554307] lowmem_reserve[]: 0 0 0 0 0 [ 1535.606691] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1535.608265] Node 1 [ 1535.730157] lowmem_reserve[]: 0 0 0 0 0 [ 1535.735460] Normal: [ 1535.736424] Node 1 [ 1535.736428] 168*4kB (UME) [ 1535.738783] Normal free:2145584kB min:53612kB low:67012kB high:80412kB active_anon:1217652kB inactive_anon:16kB active_file:28948kB inactive_file:25652kB unevictable:0kB writepending:140kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12480kB pagetables:28592kB bounce:0kB free_pcp:884kB local_pcp:604kB free_cma:0kB [ 1535.738786] lowmem_reserve[]: 0 0 0 0 0 [ 1535.738805] Node 0 DMA: 1*4kB [ 1535.758946] 75*8kB (UME) 65*16kB (UM) 256*32kB (UM) 82*64kB (UME) 31*128kB (UM) 20*256kB (UME) 8*512kB (UM) 9*1024kB (UME) 5*2048kB (UE) 512*4096kB (UM) = 2145544kB [ 1535.900186] (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1535.950107] Node 0 DMA32: 459*4kB (UME) 1409*8kB (UME) 787*16kB (UMEH) 240*32kB (UMEH) 6*64kB (ME) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 33764kB [ 1535.954388] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1536.010183] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1536.060080] Node 1 Normal: 168*4kB (UME) 129*8kB (UME) 164*16kB (UM) 257*32kB (UM) 82*64kB (UME) 31*128kB (UM) 20*256kB (UME) 8*512kB (UM) 9*1024kB (UME) 5*2048kB (UE) 512*4096kB (UM) = 2147592kB [ 1536.066022] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1536.130091] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1536.138967] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1536.183563] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1536.200365] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1536.209245] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1536.216401] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1536.279149] 14205 total pagecache pages [ 1536.280104] 14205 total pagecache pages [ 1536.287139] 0 pages in swap cache [ 1536.308906] 0 pages in swap cache [ 1536.320365] Swap cache stats: add 0, delete 0, find 0/0 [ 1536.321328] Swap cache stats: add 0, delete 0, find 0/0 [ 1536.325793] Free swap = 0kB [ 1536.325797] Total swap = 0kB [ 1536.325804] 1965979 pages RAM [ 1536.325808] 0 pages HighMem/MovableOnly [ 1536.325810] 339049 pages reserved [ 1536.325816] 0 pages cma reserved [ 1536.374164] Free swap = 0kB [ 1536.387994] Total swap = 0kB [ 1536.399706] 1965979 pages RAM [ 1536.434033] 0 pages HighMem/MovableOnly [ 1536.464816] 339049 pages reserved [ 1536.478713] 0 pages cma reserved 07:20:16 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x2400, 0x6) ioctl$KVM_RUN(r2, 0xae80, 0x0) r5 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r5, 0x4008ae89, &(0x7f0000000080)={0x81, 0xffffffff, [0x40000105]}) dup2(r5, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='R'], 0x1) 07:20:16 executing program 5: r0 = socket$inet6(0xa, 0x0, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:16 executing program 3: r0 = socket$inet(0x10, 0x2, 0x0) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet6(0xa, 0x801, 0x0) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) 07:20:16 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r2, 0x0, r2) ioctl$sock_inet6_tcp_SIOCOUTQNSD(r2, 0x894b, &(0x7f0000000080)) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = dup3(r0, r1, 0x0) r5 = dup(r3) ioctl$KVM_TPR_ACCESS_REPORTING(r5, 0x4008ae89, &(0x7f0000000000)={0x8001, 0x0, [0x4d0]}) sendmsg$IPCTNL_MSG_CT_GET_STATS_CPU(r1, &(0x7f0000000180)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x14, 0x4, 0x1, 0x201, 0x0, 0x0, {0x5, 0x0, 0x7}}, 0x14}, 0x1, 0x0, 0x0, 0x40800}, 0x40) dup2(r4, r3) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup(r6) prctl$PR_GET_TIMERSLACK(0x1e) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:20:16 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) getsockopt$IPT_SO_GET_INFO(r3, 0x0, 0x40, &(0x7f0000000080)={'nat\x00'}, &(0x7f0000000100)=0x54) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b75fb3488fd8015bba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377aba09e7b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047706865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = fcntl$dupfd(r5, 0x0, r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$DRM_IOCTL_AGP_RELEASE(r6, 0x6431) ioctl$KVM_TPR_ACCESS_REPORTING(r3, 0x4008ae89, &(0x7f0000000000)={0x1, 0xfffffffe, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) r7 = socket$nl_generic(0x10, 0x3, 0x10) r8 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)=ANY=[@ANYBLOB="50000000f4a36beac7a00fa188906c0a6529b10fd2cc23443498c20062f0cdcf530000e8000000000000000000000058870bd902bb668d9538ed190f740074bce264672f733d4b9515f88d14ba915f527f8638194d2c54896f3e0e18642b9adbec315f794d5affe78a4e0c21bb6dd56852975dc0146c3233ceaa012e9f8f042cd69e307c7aee57b895def87d1854956cbd9111cf74ed38189c445184bb4a8350328aed9fb55f8accdde51749757faf327d883b10ceca192817ef85217313d5347403ea4fb02a1595db165f4646", @ANYRES16=r8, @ANYBLOB="0112000000009ac70000090000dd3b00030014000600bf090000002e0000000000000000000100030000000000140002007663616e30000000006000000000000008ea5a130f732d0b"], 0x3}, 0x1, 0x0, 0x0, 0x4044804}, 0x0) sendmsg$IPVS_CMD_SET_SERVICE(r3, &(0x7f0000000240)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='\x00\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="00032dbd7000fddbdf250200000008000500090000001c0001800800090028000000060004004e22000006000200000000002c000280080003000400000006000e004e2100000800060008000000060002004e24000006000e004e230000"], 0x64}, 0x1, 0x0, 0x0, 0x20000080}, 0x800) 07:20:16 executing program 3: r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000ac0)='/dev/uinput\x00', 0x802, 0x0) write$uinput_user_dev(r0, &(0x7f0000000640)={'syz1\x00'}, 0x45c) ioctl$UI_DEV_CREATE(r0, 0x5501) 07:20:16 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(0xffffffffffffffff, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1536.907745] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1536.986506] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1537.008408] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1537.049293] CPU: 1 PID: 25868 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1537.057904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1537.067264] Call Trace: [ 1537.069866] dump_stack+0x13e/0x194 [ 1537.073511] warn_alloc.cold+0x96/0x1af [ 1537.077494] ? zone_watermark_ok_safe+0x280/0x280 [ 1537.082354] ? wait_for_completion+0x390/0x390 [ 1537.086949] __alloc_pages_slowpath+0x2114/0x26c0 [ 1537.091821] ? warn_alloc+0xf0/0xf0 [ 1537.095458] ? find_held_lock+0x2d/0x110 [ 1537.099528] ? fs_reclaim_acquire+0x10/0x10 [ 1537.103902] __alloc_pages_nodemask+0x5d3/0x700 [ 1537.108582] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1537.113608] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1537.118468] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1537.123512] alloc_pages_current+0xe7/0x1e0 [ 1537.127852] kvm_mmu_create+0xd1/0x1c0 [ 1537.131754] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1537.136084] ? alloc_pages_current+0xef/0x1e0 [ 1537.140590] kvm_vcpu_init+0x26d/0x360 [ 1537.144499] vmx_create_vcpu+0xf3/0x2900 [ 1537.148653] ? __mutex_unlock_slowpath+0x75/0x780 [ 1537.153513] ? futex_wake+0x11c/0x3d0 [ 1537.157328] ? handle_rdmsr+0x6b0/0x6b0 [ 1537.161576] kvm_vm_ioctl+0x49c/0x1430 [ 1537.165488] ? __lock_acquire+0x5f7/0x4620 [ 1537.169743] ? kvm_vcpu_release+0xa0/0xa0 [ 1537.173906] ? trace_hardirqs_on+0x10/0x10 [ 1537.178158] ? trace_hardirqs_on+0x10/0x10 [ 1537.182407] ? save_trace+0x290/0x290 [ 1537.186219] ? __might_fault+0x104/0x1b0 [ 1537.190304] ? kvm_vcpu_release+0xa0/0xa0 [ 1537.194474] do_vfs_ioctl+0x75a/0xfe0 07:20:17 executing program 3: prctl$PR_SET_PTRACER(0x59616d61, 0xffffffffffffffff) clone(0x80000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/dev\x00') getsockname$packet(r0, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000000240)=0x14) ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8914, &(0x7f0000000000)={'lo\x00', r1}) ioctl$sock_inet6_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000340)={@initdev={0xfe, 0x88, [], 0x0, 0x0}, 0x75, r1}) setsockopt$inet6_IPV6_PKTINFO(0xffffffffffffffff, 0x29, 0x32, &(0x7f0000000200)={@remote, r1}, 0x14) openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000840)='/dev/ttyS3\x00', 0x802, 0x0) sendfile(r0, 0xffffffffffffffff, 0x0, 0x0) connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x4e20, 0xff, @loopback}, 0x1c) write$FUSE_INTERRUPT(0xffffffffffffffff, 0x0, 0x0) r2 = gettid() wait4(0x0, 0x0, 0x0, 0x0) vmsplice(0xffffffffffffffff, 0x0, 0x0, 0x0) bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0) ptrace$setopts(0xffffffffffffffff, r2, 0x0, 0x0) process_vm_writev(0x0, &(0x7f0000000080)=[{0x0}, {0x0}, {&(0x7f0000000000)=""/6, 0x6}], 0x3, 0x0, 0x0, 0x0) tkill(r2, 0x33) ptrace$setregs(0xd, 0x0, 0x0, &(0x7f0000000080)) 07:20:17 executing program 3: msgget(0x1, 0x0) socket$inet6(0xa, 0x0, 0x0) clone(0x0, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) r0 = socket$inet6(0xa, 0x80002, 0x0) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @mcast2, 0x6}, 0x1c) [ 1537.198281] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1537.203043] ? ioctl_preallocate+0x1a0/0x1a0 [ 1537.205606] syz-executor.0: [ 1537.207465] ? security_file_ioctl+0x76/0xb0 [ 1537.207473] ? security_file_ioctl+0x83/0xb0 [ 1537.207487] SyS_ioctl+0x7f/0xb0 [ 1537.222650] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1537.226632] do_syscall_64+0x1d5/0x640 [ 1537.230538] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1537.235733] RIP: 0033:0x45c849 [ 1537.238924] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1537.240240] page allocation failure: order:0 [ 1537.246630] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1537.246635] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1537.246639] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1537.246645] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1537.246650] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1537.259258] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1537.411217] CPU: 1 PID: 25861 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1537.419140] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1537.428508] Call Trace: [ 1537.431110] dump_stack+0x13e/0x194 [ 1537.434753] warn_alloc.cold+0x96/0x1af [ 1537.438836] ? zone_watermark_ok_safe+0x280/0x280 [ 1537.443713] ? wait_for_completion+0x390/0x390 [ 1537.448311] __alloc_pages_slowpath+0x2114/0x26c0 [ 1537.452538] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1537.453171] ? warn_alloc+0xf0/0xf0 [ 1537.453184] ? find_held_lock+0x2d/0x110 [ 1537.466761] ? fs_reclaim_acquire+0x10/0x10 [ 1537.471106] __alloc_pages_nodemask+0x5d3/0x700 [ 1537.475787] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1537.480814] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1537.485674] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1537.489827] (null) [ 1537.490735] alloc_pages_current+0xe7/0x1e0 [ 1537.490752] kvm_mmu_create+0xd1/0x1c0 [ 1537.490766] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1537.490774] ? alloc_pages_current+0xef/0x1e0 [ 1537.490788] kvm_vcpu_init+0x26d/0x360 [ 1537.507208] syz-executor.0 cpuset= [ 1537.509962] vmx_create_vcpu+0xf3/0x2900 [ 1537.509982] ? __mutex_unlock_slowpath+0x75/0x780 [ 1537.509993] ? futex_wake+0x11c/0x3d0 [ 1537.510004] ? handle_rdmsr+0x6b0/0x6b0 [ 1537.510020] kvm_vm_ioctl+0x49c/0x1430 [ 1537.510032] ? __lock_acquire+0x5f7/0x4620 [ 1537.510048] ? kvm_vcpu_release+0xa0/0xa0 [ 1537.546343] ? trace_hardirqs_on+0x10/0x10 [ 1537.550595] ? trace_hardirqs_on+0x10/0x10 [ 1537.553866] syz0 [ 1537.554872] ? save_trace+0x290/0x290 [ 1537.554884] ? __might_fault+0x104/0x1b0 [ 1537.564702] ? kvm_vcpu_release+0xa0/0xa0 [ 1537.568862] do_vfs_ioctl+0x75a/0xfe0 [ 1537.572675] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1537.577441] ? ioctl_preallocate+0x1a0/0x1a0 [ 1537.578708] mems_allowed=0-1 [ 1537.581859] ? security_file_ioctl+0x76/0xb0 [ 1537.581870] ? security_file_ioctl+0x83/0xb0 [ 1537.581884] SyS_ioctl+0x7f/0xb0 [ 1537.581892] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1537.581903] do_syscall_64+0x1d5/0x640 [ 1537.581919] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1537.611149] RIP: 0033:0x45c849 [ 1537.614341] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 07:20:17 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000004e00)={&(0x7f0000ff4000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ff4000/0x2000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff6000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ff7000/0x4000)=nil, 0x0, 0x0, r0}, 0x68) r1 = syz_open_procfs(0x0, &(0x7f0000000280)='net/ptype\x00') preadv(r1, &(0x7f00000017c0), 0x3a8, 0x0) 07:20:17 executing program 3: socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0) r0 = socket$inet6(0xa, 0x80002, 0x0) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @mcast2, 0x6}, 0x1c) [ 1537.622056] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1537.629327] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1537.636593] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1537.643866] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1537.651155] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1537.658468] CPU: 0 PID: 25885 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1537.667012] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1537.676380] Call Trace: [ 1537.678998] dump_stack+0x13e/0x194 [ 1537.682640] warn_alloc.cold+0x96/0x1af [ 1537.686626] ? zone_watermark_ok_safe+0x280/0x280 [ 1537.691487] ? wait_for_completion+0x390/0x390 [ 1537.696075] __alloc_pages_slowpath+0x2114/0x26c0 [ 1537.700945] ? warn_alloc+0xf0/0xf0 [ 1537.704582] ? find_held_lock+0x2d/0x110 [ 1537.708652] ? fs_reclaim_acquire+0x10/0x10 [ 1537.712991] __alloc_pages_nodemask+0x5d3/0x700 [ 1537.717661] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1537.722684] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1537.727539] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1537.732571] alloc_pages_current+0xe7/0x1e0 [ 1537.736905] kvm_mmu_create+0xd1/0x1c0 [ 1537.740797] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1537.745124] ? alloc_pages_current+0xef/0x1e0 [ 1537.749630] kvm_vcpu_init+0x26d/0x360 [ 1537.753524] vmx_create_vcpu+0xf3/0x2900 [ 1537.757590] ? __mutex_unlock_slowpath+0x75/0x780 [ 1537.762438] ? handle_rdmsr+0x6b0/0x6b0 [ 1537.766945] kvm_vm_ioctl+0x49c/0x1430 [ 1537.770843] ? __lock_acquire+0x5f7/0x4620 [ 1537.775080] ? kvm_vcpu_release+0xa0/0xa0 [ 1537.779228] ? trace_hardirqs_on+0x10/0x10 [ 1537.783508] ? trace_hardirqs_on+0x10/0x10 [ 1537.787773] ? save_trace+0x290/0x290 [ 1537.791580] ? __might_fault+0x104/0x1b0 [ 1537.795655] ? kvm_vcpu_release+0xa0/0xa0 [ 1537.799810] do_vfs_ioctl+0x75a/0xfe0 [ 1537.803634] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1537.808435] ? ioctl_preallocate+0x1a0/0x1a0 [ 1537.812863] ? security_file_ioctl+0x76/0xb0 [ 1537.817275] ? security_file_ioctl+0x83/0xb0 [ 1537.821694] SyS_ioctl+0x7f/0xb0 [ 1537.825067] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1537.829054] do_syscall_64+0x1d5/0x640 [ 1537.832954] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1537.838141] RIP: 0033:0x45c849 [ 1537.841330] RSP: 002b:00007f75f725dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1537.849045] RAX: ffffffffffffffda RBX: 00007f75f725e6d4 RCX: 000000000045c849 [ 1537.856321] RDX: 0000000000000000 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1537.863595] RBP: 000000000076bfa0 R08: 0000000000000000 R09: 0000000000000000 07:20:17 executing program 3: r0 = socket$inet(0x10, 0x2, 0x0) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet6(0xa, 0x3, 0x6) connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, [], 0x0, 0x0}}, 0x1c) [ 1537.871009] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1537.878285] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bfac [ 1538.174616] Mem-Info: [ 1538.188346] active_anon:797266 inactive_anon:200 isolated_anon:0 [ 1538.188346] active_file:7248 inactive_file:6427 isolated_file:0 [ 1538.188346] unevictable:0 dirty:53 writeback:0 unstable:0 [ 1538.188346] slab_reclaimable:12745 slab_unreclaimable:131692 [ 1538.188346] mapped:59072 shmem:543 pagetables:16490 bounce:0 [ 1538.188346] free:548260 free_pcp:404 free_cma:0 [ 1538.326130] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1538.420078] Node 1 active_anon:1218004kB inactive_anon:16kB active_file:28960kB inactive_file:25704kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27356kB dirty:208kB writeback:0kB shmem:968kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 07:20:18 executing program 3: openat$uinput(0xffffffffffffff9c, &(0x7f0000000ac0)='/dev/uinput\x00', 0x0, 0x0) close(0xffffffffffffffff) 07:20:18 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(0xffffffffffffffff, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:18 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b75fb3488fd8015bba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377aba09e7b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047706865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) r4 = dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) r8 = fcntl$dupfd(r7, 0x0, r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) timerfd_settime(r8, 0x1, &(0x7f0000000080)={{0x77359400}}, &(0x7f00000000c0)) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) getsockopt$TIPC_DEST_DROPPABLE(r4, 0x10f, 0x81, &(0x7f0000000140), &(0x7f0000000180)=0x4) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000100)=ANY=[@ANYBLOB="0ab0a820fe2800c32aad84107fbee2"], 0x1) [ 1538.538520] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1538.704499] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1538.709590] Node 0 DMA32 free:33756kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:736kB local_pcp:76kB free_cma:0kB [ 1538.827674] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1538.867881] lowmem_reserve[]: 0 0 0 0 0 [ 1538.874587] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1538.878757] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1538.909519] CPU: 1 PID: 25947 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1538.917426] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1538.926787] Call Trace: [ 1538.929388] dump_stack+0x13e/0x194 [ 1538.933029] warn_alloc.cold+0x96/0x1af [ 1538.937016] ? zone_watermark_ok_safe+0x280/0x280 [ 1538.943890] ? wait_for_completion+0x390/0x390 [ 1538.948491] __alloc_pages_slowpath+0x2114/0x26c0 [ 1538.953366] ? warn_alloc+0xf0/0xf0 [ 1538.957007] ? find_held_lock+0x2d/0x110 [ 1538.961082] ? fs_reclaim_acquire+0x10/0x10 [ 1538.965425] __alloc_pages_nodemask+0x5d3/0x700 [ 1538.970107] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1538.975129] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1538.979979] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1538.982354] lowmem_reserve[]: [ 1538.985008] alloc_pages_current+0xe7/0x1e0 [ 1538.985024] kvm_mmu_create+0xd1/0x1c0 [ 1538.985038] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1538.991876] 0 [ 1538.992465] ? alloc_pages_current+0xef/0x1e0 [ 1538.992481] kvm_vcpu_init+0x26d/0x360 [ 1538.992493] vmx_create_vcpu+0xf3/0x2900 [ 1538.992508] ? __mutex_unlock_slowpath+0x75/0x780 [ 1539.007861] 0 [ 1539.010842] ? futex_wake+0x11c/0x3d0 [ 1539.010858] ? handle_rdmsr+0x6b0/0x6b0 [ 1539.010875] kvm_vm_ioctl+0x49c/0x1430 [ 1539.010894] ? __lock_acquire+0x5f7/0x4620 [ 1539.010904] ? kvm_vcpu_release+0xa0/0xa0 [ 1539.010914] ? trace_hardirqs_on+0x10/0x10 [ 1539.010929] ? trace_hardirqs_on+0x10/0x10 [ 1539.022914] 0 [ 1539.025432] ? save_trace+0x290/0x290 [ 1539.025444] ? __might_fault+0x104/0x1b0 [ 1539.025461] ? kvm_vcpu_release+0xa0/0xa0 [ 1539.025476] do_vfs_ioctl+0x75a/0xfe0 [ 1539.035740] 0 [ 1539.037545] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1539.037561] ? ioctl_preallocate+0x1a0/0x1a0 [ 1539.037581] ? security_file_ioctl+0x76/0xb0 [ 1539.049566] 0 [ 1539.050165] ? security_file_ioctl+0x83/0xb0 [ 1539.050179] SyS_ioctl+0x7f/0xb0 [ 1539.050188] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1539.050202] do_syscall_64+0x1d5/0x640 [ 1539.059932] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1539.059941] RIP: 0033:0x45c849 [ 1539.059947] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1539.059956] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1539.059964] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1539.074435] Node 1 [ 1539.078918] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1539.078923] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1539.078928] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1539.371197] Normal free:2149708kB min:53612kB low:67012kB high:80412kB active_anon:1217944kB inactive_anon:16kB active_file:28960kB inactive_file:25712kB unevictable:0kB writepending:80kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12736kB pagetables:28976kB bounce:0kB free_pcp:936kB local_pcp:420kB free_cma:0kB [ 1539.533476] warn_alloc_show_mem: 2 callbacks suppressed [ 1539.533480] Mem-Info: [ 1539.548162] lowmem_reserve[]: 0 0 0 0 0 [ 1539.559164] active_anon:797251 inactive_anon:200 isolated_anon:0 [ 1539.559164] active_file:7248 inactive_file:6429 isolated_file:0 [ 1539.559164] unevictable:0 dirty:21 writeback:0 unstable:0 [ 1539.559164] slab_reclaimable:12706 slab_unreclaimable:131570 [ 1539.559164] mapped:59103 shmem:543 pagetables:16423 bounce:0 [ 1539.559164] free:548403 free_pcp:473 free_cma:0 [ 1539.578255] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1539.692187] Node 0 DMA32: 147*4kB (UME) 1405*8kB (UMEH) 788*16kB (UMEH) 239*32kB (UMEH) 6*64kB (ME) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 32468kB [ 1539.738639] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1539.783077] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1539.813396] Node 1 Normal: 159*4kB (UME) 56*8kB (ME) 255*16kB (UME) 252*32kB (UM) 82*64kB (UME) 30*128kB (UM) 20*256kB (UME) 8*512kB (UM) 9*1024kB (UME) 5*2048kB (UE) 512*4096kB (UM) = 2148140kB [ 1539.847604] Node 1 active_anon:1217944kB inactive_anon:16kB active_file:28960kB inactive_file:25712kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27380kB dirty:80kB writeback:0kB shmem:968kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1539.888647] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1539.914495] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1539.938765] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1539.957142] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1539.995461] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1540.019472] 14222 total pagecache pages [ 1540.032914] 0 pages in swap cache [ 1540.041619] Swap cache stats: add 0, delete 0, find 0/0 [ 1540.052046] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1540.058523] Free swap = 0kB [ 1540.065548] Total swap = 0kB [ 1540.069965] Node 0 DMA32 free:32460kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:788kB local_pcp:664kB free_cma:0kB [ 1540.103495] 1965979 pages RAM [ 1540.111708] 0 pages HighMem/MovableOnly [ 1540.119497] 339049 pages reserved [ 1540.128175] 0 pages cma reserved 07:20:20 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(0xffffffffffffffff, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:20 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e23, @broadcast}, 0x10) sendto$inet(r0, 0x0, 0x10b, 0x200007fe, &(0x7f0000000100)={0x2, 0x10004e23, @dev={0xac, 0x14, 0x14, 0xa}}, 0x10) perf_event_open(&(0x7f0000000140)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r1 = perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x5, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, 0x11, r2, 0x0) ioctl$VT_OPENQRY(0xffffffffffffffff, 0x5600, 0x0) ioctl$PERF_EVENT_IOC_SET_OUTPUT(r1, 0x2405, r2) sendto$inet(r0, &(0x7f0000d7cfcb), 0xffffffffffffffef, 0x240, 0x0, 0xa) 07:20:20 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$RTC_AIE_ON(r3, 0x7001) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"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"}) r5 = openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/consoles\x00', 0x0, 0x0) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) r7 = fcntl$dupfd(r6, 0x0, r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) r8 = openat(r7, &(0x7f0000000100)='./file0\x00', 0x208c0, 0x88) r9 = socket$inet6_tcp(0xa, 0x1, 0x0) r10 = fcntl$dupfd(r9, 0x0, r9) ioctl$PERF_EVENT_IOC_ENABLE(r10, 0x8912, 0x400200) ioctl$KVM_RUN(r10, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000080)=ANY=[@ANYPTR64=&(0x7f0000000440)=ANY=[@ANYPTR64=&(0x7f0000000140)=ANY=[@ANYRESHEX=r9, @ANYRES32, @ANYBLOB="03726a8cf04da1a93482b75e18734198f9704b619016cc52de7fc8d37e1f13793c67eb5d271c34027b630f51fe883c2d3f51c3d87bd2be03b8c9c085d1672b0a12823180952341e3d7fb3e74a16ba4abece49f640308eaa29662c4d2d3efec7813f83d2bbdcfea84243c8b5f462950b142166c3ca101a27c0064a2d6382eefd8f1a40f549177f30c96376e24b7829dceae91c2347c22e59dd8a9924ddec70ae052471688b3692f7e", @ANYRES64, @ANYRESHEX, @ANYRESHEX, @ANYRESDEC=r8, @ANYRES32=r1, @ANYRESDEC], @ANYPTR=&(0x7f0000000280)=ANY=[@ANYBLOB="a86b4bccbc2427165ae665cb3937bc252f5f92b4b3bc221d37579e7ff7245370490c8787869d1a0471b00d38dc9275b30ecdc5db0c4f16cf75ebd3cb", @ANYRESDEC, @ANYBLOB="56f484fb7d95757effdf31ab4332d9e02e062e5c39c3dd22c43efa2d91188395b8c769237c7634d464c496f20fe2fb8ddb2f60250ce86ddbcff0fb0059832b6f10e87283ad443d6616460ca5990cc6e9effbc2442065c9cddd3b5576d4f2633223cf8fdd5dbd465c919f4e1db116bf6fca508bd50cc065745bae2f168143b24647452210be717c46fd91ca65c5ff3489aa9aff90f1af05c02c9288d2734e9a28f8693fdac3c4d08fc38d148b8da820b03758ea6a857544c3208fc52a3e9161cf6ab41282cba87a3b3ea6a039b3f007ca8cf571fd922e9d1870cd81a96ae56779b8a4889be8b7d078296339908d94bc195ceef3daab45", @ANYRES64], @ANYRESDEC=0x0, @ANYPTR=&(0x7f0000000400)=ANY=[@ANYBLOB="f5a628b36178d3c21f313cb5e6be442f88", @ANYRESDEC=r2, @ANYPTR64=&(0x7f0000000dc0)=ANY=[@ANYBLOB="2b8c4da5216aa5c21c03f26ffe0fbdbbe70a24640796e70a6dd3a55c3a0d6d55eeaae95203c3d13834c1321e0af6a838dd4ae2d99c42f0b3fae5866d960bd3ae5c2d4bd2a446f281f29d511627cf7e5633", @ANYBLOB="5e6ccd9947343150550ae813806933d6c3a9ceb502e91eaa75193f1f10229257129f330f186ea645c464d3c467ab717559a6de0d6453c2283bdb3e214dd3f25bb278f15bd54072f590074ce070e33b51e457bba185b9290db976613941499883e7ba1326643cc4d308cd26404509a52e77959c3fab6d0ea271246bd9319fcfed5d937d", @ANYPTR64=&(0x7f00000004c0)=ANY=[@ANYRES16, @ANYRES64=r6, @ANYRESDEC, @ANYRESOCT, @ANYRES16=r9], @ANYRESDEC, @ANYRESHEX=0x0, @ANYBLOB="f555a2da5832652b8f3bab80e739b8ba88e3aac91ec1dbb9623d1efe72cdc08a4558fbb122ac4d0ab2d98663cd9dc166b45c2dae4141fe9b531322561443e0e378f733113642a07bf6a165ec214cd55de164eb5dd2cf2a1815508d2f4782fc7ded9c433c1da2b24f0000000cad9928a306e9c7582e5182a45276f8f489cd0071714ed7fb288419c86b94b055720e76c1505b10446e5bf0523081bd827f35aec6fdf8c3bb1f2c1e885cb3a8eb3042977644", @ANYRESHEX]], @ANYRESHEX, @ANYPTR=&(0x7f0000000fc0)=ANY=[@ANYBLOB="21d8703d75b9b363131ca470c831ebc0f14c7205dab8242dd89e432d16127560f17b4620bd9654eeeaf20d306bbcca251ad541c0caa3e31a0920b95fb603ab3484da69561c557f45eaddcd3aa3477c52a5c7df36c07a0505f9e972d3dbadf3508dbee0aa532643ae162d1a8d32288108094b5b94e1267702fa5aee4dffd13ef53134a1a55b02cd1723722556a92693a08da903c812dc5a5a478e99dbcd82e1b6e8d26211acdc37e9d60fe87720e07dd691b47b002dc4fdee97660fbefc007492411f1cd0e675ffdd423357f1f2b6df1c7b80efd99ca43e1e126126116a16f7375339c70f2a5d4d29419e66a7607e03df1175de7fd55466e164", @ANYBLOB="628df78278e7cd62230d97ad99ed0dd178dee376b1d391b490a50646cac12172dfcac1ae90e76d12883f06e503f8ed6fd4f8b6999ee8073750b22d7a162a443e027425742b4db52d90cad4d77f455dc1d6226e133420b1e486103860551d8047927eeb3aaff4c43a1597b2bc7907537198ca", @ANYPTR64, @ANYPTR, @ANYPTR, @ANYRESOCT, @ANYPTR, @ANYRESOCT=r8, @ANYRES32=r0, @ANYBLOB="0f0749fe2783f6edec03de59da0b5a0e7f06b8cc46259a6a180275154067c18161afe0ecaf3a7ce458a5933d353d26a679061a06b5c10f156b804dc51763c245d5dc88cc5e42cbea9c60175cef145d49fb47f17b6d6048f8fceb63181d0ebbd1faebfad3912b8ebd834be3dc52e73d90169a9a81c16a85131a5957e910dc5df5f0bf67462a2f"], @ANYRESOCT, @ANYRES32=r5]], 0x1) [ 1540.173941] lowmem_reserve[]: 0 0 0 0 0 [ 1540.203555] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 07:20:20 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b75fb3488fd8015bba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377aba09e7b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047706865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff) socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f00000000c0)='/selinux/checkreqprot\x00', 0x284242, 0x0) ioctl$VIDIOC_SUBDEV_ENUM_DV_TIMINGS(r3, 0xc0945662, &(0x7f0000000100)={0xff, 0x0, [], {0x0, @bt={0xffffff16, 0x0, 0x1, 0x2, 0x100000001, 0x3, 0xf4, 0x6, 0x153da27, 0x0, 0x1, 0x0, 0x0, 0xfffffe01, 0x9, 0x1c, {0x9, 0x6}, 0xf7, 0xa2}}}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) r7 = fcntl$dupfd(r6, 0x0, r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) r8 = socket$inet6_tcp(0xa, 0x1, 0x0) r9 = fcntl$dupfd(r8, 0x0, r8) setsockopt$IPT_SO_SET_REPLACE(r7, 0x4000000000000, 0x40, &(0x7f0000000300)=ANY=[@ANYPTR64=&(0x7f00000002c0)=ANY=[@ANYPTR64=&(0x7f00000001c0)=ANY=[@ANYRESOCT], @ANYRESDEC, @ANYPTR, @ANYRES32=r9, @ANYPTR64=&(0x7f0000000200)=ANY=[@ANYPTR, @ANYPTR64, @ANYRESDEC, @ANYBLOB="f3dd0ae73aed171a2de20d54fa3960def0b83956f1d0211966034c6c354b27b95d4711264b19d959a904b2d8ab48a8899b2e2bb56201c01f1f0409", @ANYPTR, @ANYPTR64, @ANYRES32], @ANYPTR64=&(0x7f0000000280)=ANY=[@ANYBLOB="178891a5c047f8d9aaf92f8c8c2c1a5894bd890c9ac5af97aa9c490750", @ANYPTR]]], 0x1) 07:20:20 executing program 3: r0 = socket(0x10, 0x3, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r1 = getpid() sched_setattr(r1, &(0x7f0000000040)={0x38, 0x1, 0x0, 0x0, 0x5}, 0x0) socket$inet6(0xa, 0x0, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) write(r3, &(0x7f0000000340), 0x41395527) vmsplice(r2, &(0x7f0000000000)=[{&(0x7f0000000500), 0xfffffd93}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000080)={0x38, 0x2, 0x0, 0x0, 0x3, 0x0, 0x0, 0x80}, 0x0) write(r0, &(0x7f00000000c0)="240000001e005f0214ffffffffffff00000000000000000100"/36, 0x24) [ 1540.414588] lowmem_reserve[]: 0 0 0 0 0 [ 1540.458926] Node 1 Normal free:2148800kB min:53612kB low:67012kB high:80412kB active_anon:1218200kB inactive_anon:16kB active_file:28960kB inactive_file:25732kB unevictable:0kB writepending:136kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12928kB pagetables:29156kB bounce:0kB free_pcp:884kB local_pcp:332kB free_cma:0kB [ 1540.512569] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1540.537583] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1540.569002] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1540.597595] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1540.606543] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1540.648795] CPU: 1 PID: 25989 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1540.652410] syz-executor.0 cpuset= [ 1540.656718] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1540.656722] Call Trace: [ 1540.656742] dump_stack+0x13e/0x194 [ 1540.656755] warn_alloc.cold+0x96/0x1af [ 1540.656770] ? zone_watermark_ok_safe+0x280/0x280 [ 1540.669469] syz0 [ 1540.669768] ? wait_for_completion+0x390/0x390 [ 1540.675871] mems_allowed=0-1 [ 1540.675951] __alloc_pages_slowpath+0x2114/0x26c0 [ 1540.681175] lowmem_reserve[]: [ 1540.684761] ? warn_alloc+0xf0/0xf0 [ 1540.684773] ? find_held_lock+0x2d/0x110 [ 1540.684784] ? fs_reclaim_acquire+0x10/0x10 [ 1540.684802] __alloc_pages_nodemask+0x5d3/0x700 [ 1540.692276] 0 [ 1540.694436] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1540.694446] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1540.694456] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1540.694476] alloc_pages_current+0xe7/0x1e0 [ 1540.714686] 0 [ 1540.719026] kvm_mmu_create+0xd1/0x1c0 [ 1540.719040] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1540.719053] ? alloc_pages_current+0xef/0x1e0 [ 1540.735305] 0 [ 1540.735685] kvm_vcpu_init+0x26d/0x360 [ 1540.750150] 0 [ 1540.754464] vmx_create_vcpu+0xf3/0x2900 [ 1540.754481] ? __mutex_unlock_slowpath+0x75/0x780 [ 1540.754492] ? futex_wake+0x11c/0x3d0 [ 1540.754506] ? handle_rdmsr+0x6b0/0x6b0 [ 1540.766648] 0 [ 1540.770847] kvm_vm_ioctl+0x49c/0x1430 [ 1540.770862] ? __lock_acquire+0x5f7/0x4620 [ 1540.770872] ? kvm_vcpu_release+0xa0/0xa0 [ 1540.770883] ? trace_hardirqs_on+0x10/0x10 [ 1540.770898] ? trace_hardirqs_on+0x10/0x10 [ 1540.784415] ? save_trace+0x290/0x290 [ 1540.801262] Node 0 [ 1540.801344] ? __might_fault+0x104/0x1b0 [ 1540.811548] ? kvm_vcpu_release+0xa0/0xa0 [ 1540.814310] DMA: [ 1540.815698] do_vfs_ioctl+0x75a/0xfe0 [ 1540.815711] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1540.815722] ? ioctl_preallocate+0x1a0/0x1a0 [ 1540.815740] ? security_file_ioctl+0x76/0xb0 [ 1540.821392] 1*4kB [ 1540.821785] ? security_file_ioctl+0x83/0xb0 [ 1540.821803] SyS_ioctl+0x7f/0xb0 [ 1540.838737] (M) [ 1540.841888] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1540.841904] do_syscall_64+0x1d5/0x640 [ 1540.841921] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1540.841928] RIP: 0033:0x45c849 [ 1540.841933] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1540.841942] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1540.841950] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1540.852051] 2*8kB [ 1540.855193] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1540.855199] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1540.855204] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1540.946314] CPU: 0 PID: 25980 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1540.954246] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1540.963609] Call Trace: [ 1540.966214] dump_stack+0x13e/0x194 [ 1540.969857] warn_alloc.cold+0x96/0x1af [ 1540.973838] ? zone_watermark_ok_safe+0x280/0x280 [ 1540.978707] ? wait_for_completion+0x390/0x390 [ 1540.983310] __alloc_pages_slowpath+0x2114/0x26c0 [ 1540.988195] ? warn_alloc+0xf0/0xf0 [ 1540.991834] ? find_held_lock+0x2d/0x110 [ 1540.995914] ? fs_reclaim_acquire+0x10/0x10 [ 1541.000259] __alloc_pages_nodemask+0x5d3/0x700 [ 1541.004941] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1541.009966] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1541.014815] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1541.019850] alloc_pages_current+0xe7/0x1e0 [ 1541.024185] kvm_mmu_create+0xd1/0x1c0 [ 1541.028082] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1541.032420] ? alloc_pages_current+0xef/0x1e0 [ 1541.036941] kvm_vcpu_init+0x26d/0x360 [ 1541.040837] vmx_create_vcpu+0xf3/0x2900 [ 1541.044913] ? __mutex_unlock_slowpath+0x75/0x780 [ 1541.049764] ? futex_wake+0x11c/0x3d0 [ 1541.053571] ? handle_rdmsr+0x6b0/0x6b0 [ 1541.058076] kvm_vm_ioctl+0x49c/0x1430 [ 1541.061971] ? __lock_acquire+0x5f7/0x4620 [ 1541.066217] ? kvm_vcpu_release+0xa0/0xa0 [ 1541.070377] ? trace_hardirqs_on+0x10/0x10 [ 1541.074627] ? trace_hardirqs_on+0x10/0x10 [ 1541.078884] ? save_trace+0x290/0x290 [ 1541.082812] ? __might_fault+0x104/0x1b0 [ 1541.086891] ? kvm_vcpu_release+0xa0/0xa0 [ 1541.091054] do_vfs_ioctl+0x75a/0xfe0 [ 1541.094867] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1541.099645] ? ioctl_preallocate+0x1a0/0x1a0 [ 1541.104084] ? security_file_ioctl+0x76/0xb0 [ 1541.108504] ? security_file_ioctl+0x83/0xb0 [ 1541.112922] SyS_ioctl+0x7f/0xb0 [ 1541.116300] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1541.120286] do_syscall_64+0x1d5/0x640 [ 1541.124188] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1541.129387] RIP: 0033:0x45c849 [ 1541.132579] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 07:20:21 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1541.140561] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1541.147977] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1541.155259] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1541.162654] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1541.169946] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1541.259747] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. [ 1541.269620] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'. 07:20:21 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext, 0x0, 0x0, 0x100000}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) msgctl$IPC_INFO(0x0, 0x3, &(0x7f0000001780)=""/4096) socket$inet6(0xa, 0x2, 0x0) r0 = socket$inet6(0xa, 0x80002, 0x0) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @mcast2, 0x6}, 0x1c) [ 1541.299697] (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1541.342444] Node 0 DMA32: 178*4kB (UME) 1401*8kB (UME) 790*16kB (UMEH) 238*32kB (UMEH) 6*64kB (ME) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 32560kB 07:20:21 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = socket$alg(0x26, 0x5, 0x0) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000004e00)={&(0x7f0000ff4000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ff4000/0x2000)=nil, &(0x7f0000ff9000/0x4000)=nil, &(0x7f0000ff6000/0x2000)=nil, &(0x7f0000ffb000/0x1000)=nil, &(0x7f0000ff7000/0x4000)=nil, 0x0, 0x0, r0}, 0x68) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='oom_score_adj\x00') preadv(r1, &(0x7f00000017c0), 0x3a8, 0x0) 07:20:21 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1541.438669] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1541.507254] Node 1 Normal: 140*4kB (UME) 121*8kB (UME) 163*16kB (UME) 271*32kB (UME) 90*64kB (UME) 40*128kB (UM) 23*256kB (UME) 9*512kB (UM) 6*1024kB (UME) 5*2048kB (UE) 512*4096kB (UM) = 2147720kB 07:20:21 executing program 3: socket$inet6(0xa, 0x3, 0x6) 07:20:21 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1541.624727] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1541.659417] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1541.692757] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1541.729455] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1541.757203] 14230 total pagecache pages [ 1541.769681] 0 pages in swap cache [ 1541.778380] Swap cache stats: add 0, delete 0, find 0/0 [ 1541.794260] Free swap = 0kB [ 1541.804352] Total swap = 0kB [ 1541.817049] 1965979 pages RAM [ 1541.830294] 0 pages HighMem/MovableOnly [ 1541.844748] 339049 pages reserved [ 1541.855774] 0 pages cma reserved 07:20:21 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b75fb3488fd8015bba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377aba09e7b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047706865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) sendto$inet6(0xffffffffffffffff, &(0x7f0000000080)="1aa20e1d27a99e4f66483bb59452d259a7e20842f2abf341d6adf81f05b0686ac26f33", 0x23, 0x0, &(0x7f00000000c0)={0xa, 0x4e21, 0x80, @dev={0xfe, 0x80, [], 0x10}, 0xff}, 0x1c) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:20:21 executing program 3: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x7e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r0 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f00000000c0)={0x10002, 0xa, 0xd9}) 07:20:21 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, 0x0, 0x0) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1541.938337] Mem-Info: [ 1541.959375] active_anon:797269 inactive_anon:201 isolated_anon:0 [ 1541.959375] active_file:7247 inactive_file:6441 isolated_file:0 [ 1541.959375] unevictable:0 dirty:46 writeback:0 unstable:0 [ 1541.959375] slab_reclaimable:12544 slab_unreclaimable:132430 [ 1541.959375] mapped:59122 shmem:543 pagetables:16510 bounce:0 [ 1541.959375] free:547518 free_pcp:462 free_cma:0 [ 1542.180441] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:28kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes 07:20:22 executing program 3: perf_event_open(&(0x7f0000000200)={0x2, 0x70, 0x7e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}) r1 = syz_open_dev$dri(&(0x7f0000000000)='/dev/dri/card#\x00', 0x0, 0x0) ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f00000000c0)={0x10002, 0xa, 0xd9}) dup2(r0, r1) [ 1542.303640] Node 1 active_anon:1217952kB inactive_anon:16kB active_file:28960kB inactive_file:25780kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27460kB dirty:52kB writeback:0kB shmem:972kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1542.312565] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1542.458006] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1542.475870] syz-executor.1 cpuset= [ 1542.531492] lowmem_reserve[]: [ 1542.538153] syz1 [ 1542.539610] 0 [ 1542.552536] mems_allowed=0-1 [ 1542.558994] 2557 2557 2557 2557 [ 1542.572711] Node 0 DMA32 free:33056kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:28kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:1208kB local_pcp:544kB free_cma:0kB [ 1542.575952] CPU: 0 PID: 26048 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1542.609722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1542.619167] Call Trace: [ 1542.621771] dump_stack+0x13e/0x194 [ 1542.625406] warn_alloc.cold+0x96/0x1af [ 1542.629385] ? zone_watermark_ok_safe+0x280/0x280 [ 1542.634242] ? wait_for_completion+0x390/0x390 [ 1542.638842] __alloc_pages_slowpath+0x2114/0x26c0 [ 1542.643706] ? warn_alloc+0xf0/0xf0 [ 1542.647349] ? find_held_lock+0x2d/0x110 [ 1542.651422] ? fs_reclaim_acquire+0x10/0x10 [ 1542.655882] __alloc_pages_nodemask+0x5d3/0x700 [ 1542.660564] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1542.666125] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1542.670983] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1542.676020] alloc_pages_current+0xe7/0x1e0 [ 1542.680353] kvm_mmu_create+0xd1/0x1c0 [ 1542.684248] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1542.688576] ? alloc_pages_current+0xef/0x1e0 [ 1542.693082] kvm_vcpu_init+0x26d/0x360 [ 1542.696979] vmx_create_vcpu+0xf3/0x2900 [ 1542.701058] ? __mutex_unlock_slowpath+0x75/0x780 [ 1542.705911] ? futex_wake+0x11c/0x3d0 [ 1542.706018] lowmem_reserve[]: [ 1542.709726] ? handle_rdmsr+0x6b0/0x6b0 [ 1542.709744] kvm_vm_ioctl+0x49c/0x1430 [ 1542.709760] ? __lock_acquire+0x5f7/0x4620 [ 1542.724932] ? kvm_vcpu_release+0xa0/0xa0 [ 1542.729090] ? trace_hardirqs_on+0x10/0x10 [ 1542.733341] ? trace_hardirqs_on+0x10/0x10 [ 1542.737586] ? save_trace+0x290/0x290 [ 1542.741395] ? __might_fault+0x104/0x1b0 [ 1542.743794] 0 [ 1542.745480] ? kvm_vcpu_release+0xa0/0xa0 [ 1542.745493] do_vfs_ioctl+0x75a/0xfe0 [ 1542.745506] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1542.752736] 0 [ 1542.755255] ? ioctl_preallocate+0x1a0/0x1a0 [ 1542.755279] ? security_file_ioctl+0x76/0xb0 [ 1542.771173] ? security_file_ioctl+0x83/0xb0 [ 1542.775595] SyS_ioctl+0x7f/0xb0 [ 1542.778969] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1542.782958] do_syscall_64+0x1d5/0x640 [ 1542.786855] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1542.792050] RIP: 0033:0x45c849 [ 1542.794545] 0 [ 1542.795355] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 [ 1542.795362] 0 [ 1542.797158] ORIG_RAX: 0000000000000010 [ 1542.797164] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1542.797170] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1542.797175] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1542.797181] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1542.797186] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1543.069065] 0 [ 1543.077821] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1543.189090] lowmem_reserve[]: 0 0 0 0 0 [ 1543.206208] Node 1 Normal free:2150920kB min:53612kB low:67012kB high:80412kB active_anon:1217936kB inactive_anon:16kB active_file:28960kB inactive_file:25796kB unevictable:0kB writepending:108kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12576kB pagetables:28860kB bounce:0kB free_pcp:1172kB local_pcp:652kB free_cma:0kB [ 1543.319165] lowmem_reserve[]: 0 0 0 0 0 [ 1543.333440] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1543.380115] Node 0 DMA32: 302*4kB (UME) 1401*8kB (UME) 790*16kB (UMEH) 238*32kB (UMEH) 6*64kB (ME) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 33056kB [ 1543.453009] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1543.493048] Node 1 Normal: 232*4kB (UME) 361*8kB (UME) 163*16kB (UME) 258*32kB (UME) 90*64kB (UME) 40*128kB (UM) 24*256kB (UME) 9*512kB (UM) 6*1024kB (UME) 5*2048kB (UE) 512*4096kB (UM) = 2149848kB [ 1543.563867] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1543.590165] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1543.598825] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1543.637493] warn_alloc_show_mem: 1 callbacks suppressed [ 1543.637497] Mem-Info: [ 1543.664049] active_anon:797274 inactive_anon:200 isolated_anon:0 [ 1543.664049] active_file:7248 inactive_file:6450 isolated_file:0 [ 1543.664049] unevictable:0 dirty:28 writeback:0 unstable:0 [ 1543.664049] slab_reclaimable:12517 slab_unreclaimable:131772 [ 1543.664049] mapped:59102 shmem:544 pagetables:16431 bounce:0 [ 1543.664049] free:548239 free_pcp:599 free_cma:0 [ 1543.673593] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1543.790110] 14241 total pagecache pages [ 1543.794131] 0 pages in swap cache [ 1543.797588] Swap cache stats: add 0, delete 0, find 0/0 [ 1543.830094] Free swap = 0kB [ 1543.833138] Total swap = 0kB [ 1543.836155] 1965979 pages RAM [ 1543.838630] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1543.839256] 0 pages HighMem/MovableOnly [ 1543.979465] 339049 pages reserved [ 1543.984675] Node 1 active_anon:1218036kB inactive_anon:16kB active_file:28960kB inactive_file:25796kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27476kB dirty:108kB writeback:0kB shmem:972kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1543.989789] 0 pages cma reserved 07:20:24 executing program 3: r0 = socket$inet(0x2, 0x4000000000000001, 0x0) sendto$inet(r0, 0x0, 0xffffffffffffffb5, 0x200007fd, &(0x7f0000e68000)={0x2, 0x0, @local}, 0x10) 07:20:24 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, 0x0, 0x0) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:24 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$SNDRV_TIMER_IOCTL_TREAD(r3, 0x40045402, &(0x7f00000000c0)=0x1) r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r5 = ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r5, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r5, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r6, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b75fb3488fd8015bba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377aba09e7b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047706865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) r8 = fcntl$dupfd(r7, 0x0, r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x4001ff) ioctl$TIOCSETD(r8, 0x5423, &(0x7f0000000080)=0xa) ioctl$KVM_RUN(r6, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r6, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) [ 1544.130464] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 07:20:24 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) dup3(r0, r0, 0x80000) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r6, 0x0, r6) r7 = dup3(0xffffffffffffffff, r6, 0x0) ioctl$SG_GET_COMMAND_Q(r7, 0x2270, &(0x7f0000000080)) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000180)=ANY=[@ANYBLOB="edf3b73aba77cd9f7db227bb76"], 0x1) r8 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f00000000c0)='/dev/nvme-fabrics\x00', 0x0, 0x0) getsockopt$bt_BT_DEFER_SETUP(r8, 0x112, 0x7, &(0x7f0000000100)=0x1, &(0x7f0000000140)=0x4) 07:20:24 executing program 3: ioctl$DRM_IOCTL_MODE_CREATE_DUMB(0xffffffffffffffff, 0xc02064b2, 0x0) dup2(0xffffffffffffffff, 0xffffffffffffffff) accept4$bt_l2cap(0xffffffffffffffff, 0x0, 0x0, 0x0) socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet_tcp(0x2, 0x1, 0x0) ioctl$sock_inet_SIOCSIFADDR(r2, 0x8916, &(0x7f0000000000)={'syz_tun\x00', {0x2, 0x0, @rand_addr=0xc0000000}}) syz_emit_ethernet(0x4e, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @tipc={{0x5, 0x4, 0x0, 0x0, 0x40, 0x0, 0x0, 0x0, 0x29, 0x0, @empty=0x2, @multicast1}, @payload_mcast={{{{{{0x2c, 0x0, 0x0, 0x0, 0x0, 0xb, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x2002}}}}}}}}}}, 0x0) [ 1544.271247] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1544.289828] Node 0 DMA32 free:33180kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:1256kB local_pcp:652kB free_cma:0kB 07:20:24 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, 0x0, 0x0) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1544.408699] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1544.465460] sit: Src spoofed 0.0.0.2/2002:: -> 224.0.0.1/:: [ 1544.473477] lowmem_reserve[]: 0 0 0 0 0 [ 1544.500068] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1544.505490] CPU: 0 PID: 26091 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1544.513400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1544.522783] Call Trace: [ 1544.525393] dump_stack+0x13e/0x194 [ 1544.529030] warn_alloc.cold+0x96/0x1af [ 1544.533009] ? zone_watermark_ok_safe+0x280/0x280 [ 1544.537868] ? wait_for_completion+0x390/0x390 [ 1544.542464] __alloc_pages_slowpath+0x2114/0x26c0 [ 1544.546317] sit: Src spoofed 0.0.0.2/2002:: -> 224.0.0.1/:: [ 1544.547328] ? warn_alloc+0xf0/0xf0 [ 1544.547341] ? find_held_lock+0x2d/0x110 [ 1544.547353] ? fs_reclaim_acquire+0x10/0x10 [ 1544.547385] __alloc_pages_nodemask+0x5d3/0x700 [ 1544.569846] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1544.574877] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1544.579735] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1544.584770] alloc_pages_current+0xe7/0x1e0 [ 1544.589102] kvm_mmu_create+0xd1/0x1c0 [ 1544.593004] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1544.597421] ? alloc_pages_current+0xef/0x1e0 [ 1544.601926] kvm_vcpu_init+0x26d/0x360 [ 1544.605827] vmx_create_vcpu+0xf3/0x2900 [ 1544.609902] ? __mutex_unlock_slowpath+0x75/0x780 [ 1544.614754] ? futex_wake+0x11c/0x3d0 [ 1544.618563] ? handle_rdmsr+0x6b0/0x6b0 [ 1544.622553] kvm_vm_ioctl+0x49c/0x1430 [ 1544.626449] ? __lock_acquire+0x5f7/0x4620 [ 1544.631042] ? kvm_vcpu_release+0xa0/0xa0 [ 1544.635196] ? trace_hardirqs_on+0x10/0x10 [ 1544.639446] ? trace_hardirqs_on+0x10/0x10 [ 1544.643689] ? save_trace+0x290/0x290 [ 1544.647492] ? __might_fault+0x104/0x1b0 [ 1544.651567] ? kvm_vcpu_release+0xa0/0xa0 [ 1544.655721] do_vfs_ioctl+0x75a/0xfe0 [ 1544.659525] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1544.664287] ? ioctl_preallocate+0x1a0/0x1a0 [ 1544.668709] ? security_file_ioctl+0x76/0xb0 [ 1544.673123] ? security_file_ioctl+0x83/0xb0 [ 1544.677538] SyS_ioctl+0x7f/0xb0 [ 1544.680909] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1544.684893] do_syscall_64+0x1d5/0x640 [ 1544.688795] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1544.693995] RIP: 0033:0x45c849 [ 1544.697184] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1544.704895] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1544.712170] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000008 [ 1544.719445] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1544.726721] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1544.733999] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1544.742463] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1544.781679] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) 07:20:24 executing program 3: r0 = socket$inet6(0xa, 0x801, 0x0) bind$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @empty}, 0x1c) [ 1544.819807] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1544.827534] CPU: 0 PID: 26098 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1544.835443] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1544.844802] Call Trace: [ 1544.847405] dump_stack+0x13e/0x194 [ 1544.851047] warn_alloc.cold+0x96/0x1af [ 1544.855033] ? zone_watermark_ok_safe+0x280/0x280 [ 1544.859984] ? wait_for_completion+0x390/0x390 [ 1544.864579] __alloc_pages_slowpath+0x2114/0x26c0 [ 1544.869444] ? warn_alloc+0xf0/0xf0 [ 1544.873080] ? find_held_lock+0x2d/0x110 [ 1544.877149] ? fs_reclaim_acquire+0x10/0x10 [ 1544.881494] __alloc_pages_nodemask+0x5d3/0x700 [ 1544.886173] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1544.891289] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1544.896140] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1544.901289] alloc_pages_current+0xe7/0x1e0 [ 1544.905648] kvm_mmu_create+0xd1/0x1c0 [ 1544.909549] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1544.913884] ? alloc_pages_current+0xef/0x1e0 [ 1544.918391] kvm_vcpu_init+0x26d/0x360 [ 1544.922342] vmx_create_vcpu+0xf3/0x2900 [ 1544.926435] ? __mutex_unlock_slowpath+0x75/0x780 [ 1544.931287] ? futex_wake+0x11c/0x3d0 [ 1544.935098] ? handle_rdmsr+0x6b0/0x6b0 [ 1544.939087] kvm_vm_ioctl+0x49c/0x1430 [ 1544.942986] ? __lock_acquire+0x5f7/0x4620 [ 1544.947227] ? kvm_vcpu_release+0xa0/0xa0 [ 1544.951391] ? trace_hardirqs_on+0x10/0x10 [ 1544.955646] ? trace_hardirqs_on+0x10/0x10 [ 1544.959901] ? save_trace+0x290/0x290 [ 1544.963796] ? __might_fault+0x104/0x1b0 [ 1544.967876] ? kvm_vcpu_release+0xa0/0xa0 [ 1544.972040] do_vfs_ioctl+0x75a/0xfe0 [ 1544.975855] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1544.980629] ? ioctl_preallocate+0x1a0/0x1a0 [ 1544.985068] ? security_file_ioctl+0x76/0xb0 [ 1544.989486] ? security_file_ioctl+0x83/0xb0 [ 1544.993913] SyS_ioctl+0x7f/0xb0 [ 1544.997291] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1545.001278] do_syscall_64+0x1d5/0x640 [ 1545.005184] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1545.010378] RIP: 0033:0x45c849 [ 1545.013568] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1545.021284] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1545.028561] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1545.035950] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1545.043231] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1545.051116] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1545.061136] lowmem_reserve[]: 0 0 0 0 0 07:20:25 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1545.065155] Node 1 Normal free:2147796kB min:53612kB low:67012kB high:80412kB active_anon:1218152kB inactive_anon:16kB active_file:28960kB inactive_file:25828kB unevictable:0kB writepending:176kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12864kB pagetables:29184kB bounce:0kB free_pcp:684kB local_pcp:348kB free_cma:0kB [ 1545.218665] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1545.258226] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1545.277584] lowmem_reserve[]: 0 0 0 0 0 [ 1545.290126] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1545.295556] CPU: 0 PID: 26122 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1545.303444] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1545.312809] Call Trace: [ 1545.315413] dump_stack+0x13e/0x194 [ 1545.319087] warn_alloc.cold+0x96/0x1af [ 1545.323076] ? zone_watermark_ok_safe+0x280/0x280 [ 1545.327943] ? wait_for_completion+0x390/0x390 [ 1545.332546] __alloc_pages_slowpath+0x2114/0x26c0 [ 1545.337417] ? warn_alloc+0xf0/0xf0 [ 1545.341059] ? find_held_lock+0x2d/0x110 [ 1545.345246] ? fs_reclaim_acquire+0x10/0x10 [ 1545.349585] __alloc_pages_nodemask+0x5d3/0x700 [ 1545.354302] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1545.359330] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1545.364186] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1545.369223] alloc_pages_current+0xe7/0x1e0 [ 1545.373558] kvm_mmu_create+0xd1/0x1c0 [ 1545.377457] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1545.381871] ? alloc_pages_current+0xef/0x1e0 [ 1545.386387] kvm_vcpu_init+0x26d/0x360 [ 1545.390287] vmx_create_vcpu+0xf3/0x2900 [ 1545.394360] ? __mutex_unlock_slowpath+0x75/0x780 [ 1545.399214] ? futex_wake+0x11c/0x3d0 [ 1545.403050] ? handle_rdmsr+0x6b0/0x6b0 [ 1545.407041] kvm_vm_ioctl+0x49c/0x1430 [ 1545.410940] ? __lock_acquire+0x5f7/0x4620 [ 1545.415187] ? kvm_vcpu_release+0xa0/0xa0 [ 1545.419348] ? trace_hardirqs_on+0x10/0x10 [ 1545.423608] ? trace_hardirqs_on+0x10/0x10 [ 1545.428029] ? save_trace+0x290/0x290 [ 1545.431846] ? __might_fault+0x104/0x1b0 [ 1545.435922] ? kvm_vcpu_release+0xa0/0xa0 [ 1545.440099] do_vfs_ioctl+0x75a/0xfe0 [ 1545.443911] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1545.448677] ? ioctl_preallocate+0x1a0/0x1a0 [ 1545.453105] ? security_file_ioctl+0x76/0xb0 [ 1545.457518] ? security_file_ioctl+0x83/0xb0 [ 1545.461935] SyS_ioctl+0x7f/0xb0 [ 1545.465309] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1545.469295] do_syscall_64+0x1d5/0x640 [ 1545.473201] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1545.478501] RIP: 0033:0x45c849 [ 1545.481697] RSP: 002b:00007f4840a0dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1545.489413] RAX: ffffffffffffffda RBX: 00007f4840a0e6d4 RCX: 000000000045c849 [ 1545.496688] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1545.503968] RBP: 000000000076c040 R08: 0000000000000000 R09: 0000000000000000 [ 1545.511248] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1545.518526] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076c04c [ 1545.534040] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1545.560149] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1545.565688] CPU: 0 PID: 26118 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1545.573577] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1545.582938] Call Trace: [ 1545.585573] dump_stack+0x13e/0x194 [ 1545.589221] warn_alloc.cold+0x96/0x1af [ 1545.593212] ? zone_watermark_ok_safe+0x280/0x280 [ 1545.598079] ? wait_for_completion+0x390/0x390 [ 1545.602676] __alloc_pages_slowpath+0x2114/0x26c0 [ 1545.607542] ? warn_alloc+0xf0/0xf0 [ 1545.611179] ? find_held_lock+0x2d/0x110 [ 1545.615252] ? fs_reclaim_acquire+0x10/0x10 [ 1545.619594] __alloc_pages_nodemask+0x5d3/0x700 [ 1545.624364] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1545.629393] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1545.634252] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1545.639292] alloc_pages_current+0xe7/0x1e0 [ 1545.643628] kvm_mmu_create+0xd1/0x1c0 [ 1545.647535] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1545.651865] ? alloc_pages_current+0xef/0x1e0 [ 1545.656368] kvm_vcpu_init+0x26d/0x360 [ 1545.660262] vmx_create_vcpu+0xf3/0x2900 [ 1545.664338] ? __mutex_unlock_slowpath+0x75/0x780 [ 1545.669197] ? handle_rdmsr+0x6b0/0x6b0 [ 1545.673183] kvm_vm_ioctl+0x49c/0x1430 [ 1545.677077] ? __lock_acquire+0x5f7/0x4620 [ 1545.681325] ? kvm_vcpu_release+0xa0/0xa0 [ 1545.685482] ? trace_hardirqs_on+0x10/0x10 [ 1545.689768] ? trace_hardirqs_on+0x10/0x10 [ 1545.694191] ? save_trace+0x290/0x290 [ 1545.698115] ? __might_fault+0x104/0x1b0 [ 1545.702187] ? kvm_vcpu_release+0xa0/0xa0 [ 1545.706342] do_vfs_ioctl+0x75a/0xfe0 [ 1545.710148] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1545.714910] ? ioctl_preallocate+0x1a0/0x1a0 [ 1545.719331] ? security_file_ioctl+0x76/0xb0 [ 1545.723743] ? security_file_ioctl+0x83/0xb0 [ 1545.728157] SyS_ioctl+0x7f/0xb0 [ 1545.731522] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1545.735503] do_syscall_64+0x1d5/0x640 [ 1545.739402] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1545.744591] RIP: 0033:0x45c849 [ 1545.747792] RSP: 002b:00007f75f721bc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1545.755504] RAX: ffffffffffffffda RBX: 00007f75f721c6d4 RCX: 000000000045c849 [ 1545.762777] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000008 [ 1545.770050] RBP: 000000000076c0e0 R08: 0000000000000000 R09: 0000000000000000 [ 1545.777322] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1545.784594] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076c0ec [ 1545.810227] Node 0 DMA32: 333*4kB (UME) 1401*8kB (UME) 792*16kB (UMEH) 238*32kB (UMEH) 6*64kB (ME) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 33212kB [ 1545.849922] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1545.870130] Node 1 Normal: 123*4kB (UME) 174*8kB (UME) 136*16kB (UME) 268*32kB (UME) 89*64kB (UME) 35*128kB (UM) 24*256kB (UME) 9*512kB (UM) 6*1024kB (UME) 5*2048kB (UE) 512*4096kB (UM) = 2147100kB [ 1545.916150] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1545.953188] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1545.973100] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1545.993491] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1546.018305] 14249 total pagecache pages [ 1546.039646] 0 pages in swap cache [ 1546.056676] Swap cache stats: add 0, delete 0, find 0/0 [ 1546.075906] Free swap = 0kB [ 1546.107812] Total swap = 0kB [ 1546.119644] 1965979 pages RAM [ 1546.134122] 0 pages HighMem/MovableOnly [ 1546.170843] 339049 pages reserved [ 1546.186740] 0 pages cma reserved 07:20:26 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1546.234055] Mem-Info: [ 1546.244483] active_anon:797293 inactive_anon:200 isolated_anon:0 [ 1546.244483] active_file:7247 inactive_file:6470 isolated_file:0 [ 1546.244483] unevictable:0 dirty:28 writeback:0 unstable:0 [ 1546.244483] slab_reclaimable:12538 slab_unreclaimable:132057 [ 1546.244483] mapped:59081 shmem:544 pagetables:16462 bounce:0 [ 1546.244483] free:547814 free_pcp:571 free_cma:0 07:20:26 executing program 3: perf_event_open(&(0x7f000001d000)={0x2, 0x70, 0x7e, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) socket$inet_icmp_raw(0x2, 0x3, 0x1) 07:20:26 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:26 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) connect$pptp(0xffffffffffffffff, &(0x7f00000002c0)={0x18, 0x2, {0x1, @dev={0xac, 0x14, 0x14, 0x31}}}, 0x1e) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b75fb3488fd8015bba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377aba09e7b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047706865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r6, 0x0, r6) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) r8 = fcntl$dupfd(r7, 0x0, r7) r9 = socket$inet6_tcp(0xa, 0x1, 0x0) r10 = fcntl$dupfd(r9, 0x0, r9) ioctl$PERF_EVENT_IOC_ENABLE(r10, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000200)=ANY=[@ANYPTR64=&(0x7f00000001c0)=ANY=[@ANYPTR=&(0x7f0000000000)=ANY=[@ANYRES16=r3], @ANYPTR=&(0x7f00000000c0)=ANY=[@ANYBLOB="ac82bc1a752ad0b2a01bce0b643536acc3bf4af7a493cfa5c64e5300715cad536753ecec13c324e29d68d0efb7c82c679d3dece8411dbfe19aa087560acec5894e3b78e1aac8b6b7a36227cb2d7a90872fa86521e3046b59341472847263665adb921d6a4c35ffd2ff5cfa", @ANYPTR=&(0x7f0000000400)=ANY=[@ANYRES64, @ANYRESDEC, @ANYRES32, @ANYPTR64=&(0x7f0000000300)=ANY=[@ANYPTR], @ANYPTR=&(0x7f0000000340)=ANY=[@ANYPTR, @ANYBLOB="73797cb20b0960045fa90549be55e83871740fb9e585978bec535f7eef5bdaa4608656c09d776afe88d8318efafca2952254fb33188d9f1f62191915dfa1efe9eda18614c9df6b94ddce6e8c1a77528485684e5b01bc1b34d668c36855f113e6dcc18de75bc60e7cfe0c", @ANYRES16, @ANYPTR, @ANYPTR64, @ANYRESOCT], @ANYRES64=r0, @ANYRES64=r8], @ANYPTR64], @ANYRES16=r7, @ANYPTR64=&(0x7f0000000180)=ANY=[@ANYRESDEC, @ANYRES16=0x0]], @ANYRESDEC=r10, @ANYBLOB="dbaf221db3ca1248bfccd305d688fd7b149d21087ffb1722cf234c1f74545cc6e70eb7dfc6b3029f4ce1ff7163aec9609dafce7eb2f49ba0122abbfef7d7ba8696833190bb7f066f7c42c8bb0005fcfb351953ef881c8ea8aa3cc54a8f8d764cc9bb4a08d1b332f51f", @ANYPTR], 0x4) 07:20:26 executing program 3: syz_open_dev$loop(&(0x7f0000000000)='/dev/loop#\x00', 0x0, 0x0) [ 1546.467013] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:28kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes 07:20:26 executing program 3: prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x8d}, 0x0) r0 = getpid() sched_setattr(r0, &(0x7f0000000040)={0x38, 0x2, 0x0, 0x0, 0x5}, 0x0) recvmmsg(0xffffffffffffffff, &(0x7f0000008880), 0x400000000000249, 0x0, 0x0) pipe(&(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) write(r2, &(0x7f0000000340), 0x41395527) vmsplice(r1, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) sched_setattr(0x0, &(0x7f0000000180)={0x38, 0x1, 0x0, 0x0, 0x3}, 0x0) syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) r3 = open(&(0x7f0000000240)='./file0\x00', 0x0, 0x0) fchdir(r3) r4 = creat(&(0x7f0000000080)='./bus\x00', 0x0) ftruncate(r4, 0x800) lseek(r4, 0x0, 0x2) r5 = open(&(0x7f0000001840)='./bus\x00', 0x80, 0x0) sendfile(r4, r5, 0x0, 0x8400fffffffa) creat(&(0x7f0000000100)='./bus\x00', 0x0) [ 1546.610775] Node 1 active_anon:1218112kB inactive_anon:16kB active_file:28960kB inactive_file:25872kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27392kB dirty:208kB writeback:0kB shmem:972kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1546.770106] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1546.807317] audit: type=1804 audit(1585639226.844:527): pid=26163 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="open_writers" comm="syz-executor.3" name="bus" dev="sda1" ino=16952 res=1 [ 1546.885259] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1546.935311] audit: type=1804 audit(1585639226.894:528): pid=26167 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="ToMToU" comm="syz-executor.3" name="bus" dev="sda1" ino=16952 res=1 [ 1546.971156] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1546.999129] CPU: 1 PID: 26150 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1547.007054] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1547.016411] Call Trace: [ 1547.019016] dump_stack+0x13e/0x194 [ 1547.022663] warn_alloc.cold+0x96/0x1af [ 1547.026640] ? zone_watermark_ok_safe+0x280/0x280 [ 1547.031503] ? wait_for_completion+0x390/0x390 [ 1547.036095] __alloc_pages_slowpath+0x2114/0x26c0 [ 1547.040957] ? warn_alloc+0xf0/0xf0 [ 1547.044583] ? find_held_lock+0x2d/0x110 [ 1547.048646] ? fs_reclaim_acquire+0x10/0x10 [ 1547.052985] __alloc_pages_nodemask+0x5d3/0x700 [ 1547.057667] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1547.062693] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1547.067541] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1547.072582] alloc_pages_current+0xe7/0x1e0 [ 1547.076918] kvm_mmu_create+0xd1/0x1c0 [ 1547.080813] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1547.085224] ? alloc_pages_current+0xef/0x1e0 [ 1547.089727] kvm_vcpu_init+0x26d/0x360 [ 1547.093620] vmx_create_vcpu+0xf3/0x2900 [ 1547.097689] ? __mutex_unlock_slowpath+0x75/0x780 [ 1547.102541] ? futex_wake+0x11c/0x3d0 [ 1547.106345] ? handle_rdmsr+0x6b0/0x6b0 [ 1547.110329] kvm_vm_ioctl+0x49c/0x1430 [ 1547.114224] ? __lock_acquire+0x5f7/0x4620 [ 1547.118462] ? kvm_vcpu_release+0xa0/0xa0 [ 1547.122793] ? trace_hardirqs_on+0x10/0x10 [ 1547.127038] ? trace_hardirqs_on+0x10/0x10 [ 1547.131721] ? save_trace+0x290/0x290 [ 1547.135524] ? __might_fault+0x104/0x1b0 [ 1547.139598] ? kvm_vcpu_release+0xa0/0xa0 [ 1547.143752] do_vfs_ioctl+0x75a/0xfe0 [ 1547.147555] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1547.152328] ? ioctl_preallocate+0x1a0/0x1a0 [ 1547.156749] ? security_file_ioctl+0x76/0xb0 [ 1547.161171] ? security_file_ioctl+0x83/0xb0 [ 1547.165593] SyS_ioctl+0x7f/0xb0 [ 1547.168968] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1547.172954] do_syscall_64+0x1d5/0x640 [ 1547.176865] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1547.182063] RIP: 0033:0x45c849 [ 1547.185248] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1547.192959] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1547.200233] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1547.207534] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1547.214803] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1547.222094] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1547.277740] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1547.364302] Node 0 DMA32 free:31024kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:36kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:476kB local_pcp:384kB free_cma:0kB [ 1547.641173] audit: type=1804 audit(1585639227.644:529): pid=26174 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="ToMToU" comm="syz-executor.3" name="bus" dev="sda1" ino=16952 res=1 [ 1547.720294] warn_alloc_show_mem: 2 callbacks suppressed [ 1547.720297] Mem-Info: [ 1547.774652] active_anon:797286 inactive_anon:199 isolated_anon:0 [ 1547.774652] active_file:7250 inactive_file:6513 isolated_file:0 [ 1547.774652] unevictable:0 dirty:35 writeback:0 unstable:0 [ 1547.774652] slab_reclaimable:12756 slab_unreclaimable:130393 [ 1547.774652] mapped:59095 shmem:545 pagetables:16476 bounce:0 [ 1547.774652] free:549331 free_pcp:443 free_cma:0 [ 1547.792546] lowmem_reserve[]: [ 1547.836703] syz-executor.1: [ 1547.849840] audit: type=1804 audit(1585639227.794:530): pid=26167 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="open_writers" comm="syz-executor.3" name="bus" dev="sda1" ino=16952 res=1 [ 1547.873403] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:36kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1547.891552] page allocation failure: order:0 [ 1547.916789] 0 [ 1547.923726] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1547.935510] 0 0 0 0 [ 1547.945792] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1547.964903] Node 1 active_anon:1217984kB inactive_anon:12kB active_file:28964kB inactive_file:26052kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27448kB dirty:136kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1547.978039] syz-executor.1 cpuset= [ 1548.006865] audit: type=1804 audit(1585639227.794:531): pid=26176 uid=0 auid=4294967295 ses=4294967295 subj=unconfined_u:system_r:insmod_t:s0-s0:c0.c1023 op="invalid_pcr" cause="ToMToU" comm="syz-executor.3" name="bus" dev="sda1" ino=16952 res=1 [ 1548.052555] syz1 mems_allowed=0-1 [ 1548.058322] lowmem_reserve[]: 0 0 0 0 0 [ 1548.064723] CPU: 1 PID: 26170 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1548.072621] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1548.081979] Call Trace: [ 1548.084582] dump_stack+0x13e/0x194 [ 1548.088224] warn_alloc.cold+0x96/0x1af [ 1548.092355] ? zone_watermark_ok_safe+0x280/0x280 [ 1548.097223] ? wait_for_completion+0x390/0x390 [ 1548.101822] __alloc_pages_slowpath+0x2114/0x26c0 [ 1548.106693] ? warn_alloc+0xf0/0xf0 [ 1548.110327] ? find_held_lock+0x2d/0x110 [ 1548.114394] ? fs_reclaim_acquire+0x10/0x10 [ 1548.118733] __alloc_pages_nodemask+0x5d3/0x700 [ 1548.119167] Node 0 [ 1548.123397] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1548.123405] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1548.123414] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1548.123436] alloc_pages_current+0xe7/0x1e0 [ 1548.135428] DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1548.135597] kvm_mmu_create+0xd1/0x1c0 [ 1548.163733] lowmem_reserve[]: [ 1548.171466] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1548.171477] ? alloc_pages_current+0xef/0x1e0 [ 1548.171489] kvm_vcpu_init+0x26d/0x360 [ 1548.171502] vmx_create_vcpu+0xf3/0x2900 [ 1548.185214] 0 [ 1548.187404] ? __mutex_unlock_slowpath+0x75/0x780 [ 1548.187418] ? handle_rdmsr+0x6b0/0x6b0 [ 1548.197388] 2557 [ 1548.201966] kvm_vm_ioctl+0x49c/0x1430 [ 1548.201980] ? __lock_acquire+0x5f7/0x4620 [ 1548.201991] ? kvm_vcpu_release+0xa0/0xa0 [ 1548.212038] 2557 [ 1548.216102] ? trace_hardirqs_on+0x10/0x10 [ 1548.216112] ? __lock_is_held+0xad/0x140 [ 1548.228785] 2557 [ 1548.230786] ? trace_hardirqs_on+0x10/0x10 [ 1548.230798] ? find_held_lock+0x2d/0x110 [ 1548.230807] ? save_trace+0x290/0x290 [ 1548.230823] ? kvm_vcpu_release+0xa0/0xa0 [ 1548.235613] 2557 [ 1548.237255] do_vfs_ioctl+0x75a/0xfe0 [ 1548.237269] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1548.237281] ? ioctl_preallocate+0x1a0/0x1a0 [ 1548.249262] ? security_file_ioctl+0x76/0xb0 [ 1548.254086] Node 0 [ 1548.255125] ? security_file_ioctl+0x83/0xb0 [ 1548.267339] DMA32 free:29248kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:36kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:644kB local_pcp:304kB free_cma:0kB [ 1548.268823] SyS_ioctl+0x7f/0xb0 [ 1548.268834] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1548.274869] lowmem_reserve[]: [ 1548.275514] do_syscall_64+0x1d5/0x640 [ 1548.318174] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1548.323364] RIP: 0033:0x45c849 [ 1548.326550] RSP: 002b:00007f4cd9a86c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1548.334270] RAX: ffffffffffffffda RBX: 00007f4cd9a876d4 RCX: 000000000045c849 [ 1548.337435] 0 [ 1548.341544] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1548.341549] RBP: 000000000076c040 R08: 0000000000000000 R09: 0000000000000000 [ 1548.341554] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1548.341559] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076c04c [ 1548.345678] Node 1 [ 1548.403958] 0 0 0 0 [ 1548.410336] Normal free:2154400kB min:53612kB low:67012kB high:80412kB active_anon:1217996kB inactive_anon:16kB active_file:28968kB inactive_file:25900kB unevictable:0kB writepending:80kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12704kB pagetables:28892kB bounce:0kB free_pcp:1332kB local_pcp:664kB free_cma:0kB [ 1548.419988] Node 0 [ 1548.477317] lowmem_reserve[]: 0 0 0 0 0 [ 1548.490533] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1548.520246] Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1548.523626] Node 0 [ 1548.585763] lowmem_reserve[]: 0 0 0 0 0 [ 1548.592623] DMA32: 34*4kB (UMEH) 1175*8kB (UMEH) 770*16kB (UE) 224*32kB (UEH) 3*64kB (EH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 29216kB [ 1548.605763] Node 1 Normal free:2154820kB min:53612kB low:67012kB high:80412kB active_anon:1217996kB inactive_anon:16kB active_file:28968kB inactive_file:25900kB unevictable:0kB writepending:80kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12704kB pagetables:28892kB bounce:0kB free_pcp:1160kB local_pcp:476kB free_cma:0kB [ 1548.642339] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1548.699168] Node 1 Normal: 249*4kB (UME) 332*8kB (UME) 474*16kB (UME) 317*32kB (UME) 107*64kB (UME) 53*128kB (UM) 38*256kB (UME) 19*512kB (UM) 12*1024kB (UME) 9*2048kB (UME) 505*4096kB (UM) = 2153668kB [ 1548.734827] lowmem_reserve[]: 0 0 0 0 0 [ 1548.748143] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1548.762372] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1548.790178] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1548.796420] Node 0 DMA32: 62*4kB (UMH) 1186*8kB (UMEH) 771*16kB (UE) 225*32kB (UEH) 3*64kB (EH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 29464kB [ 1548.817483] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1548.858681] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1548.878165] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1548.889564] Node 1 Normal: 218*4kB (UME) 184*8kB (UME) 450*16kB (UME) 319*32kB (UME) 107*64kB (UME) 53*128kB (UM) 38*256kB (UME) 19*512kB (UM) 12*1024kB (UME) 9*2048kB (UME) 505*4096kB (UM) = 2152040kB [ 1548.911833] 14270 total pagecache pages [ 1548.915870] 0 pages in swap cache [ 1548.919321] Swap cache stats: add 0, delete 0, find 0/0 [ 1548.941968] Free swap = 0kB [ 1548.942765] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1548.945040] Total swap = 0kB [ 1548.945047] 1965979 pages RAM [ 1548.945051] 0 pages HighMem/MovableOnly [ 1548.945054] 339049 pages reserved [ 1548.945058] 0 pages cma reserved [ 1549.048331] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1549.069476] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1549.072542] warn_alloc_show_mem: 1 callbacks suppressed [ 1549.072546] Mem-Info: [ 1549.097102] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1549.104947] active_anon:797264 inactive_anon:200 isolated_anon:0 [ 1549.104947] active_file:7250 inactive_file:6476 isolated_file:0 [ 1549.104947] unevictable:0 dirty:21 writeback:0 unstable:0 [ 1549.104947] slab_reclaimable:12777 slab_unreclaimable:130794 [ 1549.104947] mapped:59088 shmem:545 pagetables:16439 bounce:0 [ 1549.104947] free:548950 free_pcp:584 free_cma:0 [ 1549.130075] 14270 total pagecache pages [ 1549.159665] 0 pages in swap cache [ 1549.182988] Swap cache stats: add 0, delete 0, find 0/0 [ 1549.183793] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1549.195749] Free swap = 0kB [ 1549.246276] Total swap = 0kB [ 1549.270128] Node 1 active_anon:1217996kB inactive_anon:16kB active_file:28968kB inactive_file:25900kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27420kB dirty:80kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1549.270227] 1965979 pages RAM [ 1549.337113] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1549.362130] 0 pages HighMem/MovableOnly [ 1549.369911] 339049 pages reserved [ 1549.382606] 0 pages cma reserved 07:20:29 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = socket$inet_sctp(0x2, 0x2a003514056c8ca7, 0x84) getsockopt$inet_sctp_SCTP_AUTOCLOSE(r1, 0x84, 0x4, &(0x7f0000000080), &(0x7f00000000c0)=0x4) r2 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r3, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r3, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='\x00'], 0x1) 07:20:29 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r3, 0x10e, 0x1, &(0x7f0000000280)=0x1b, 0x4) r4 = mmap$binder(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1, 0x11, r1, 0xb3) r5 = mmap$binder(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x1, 0x11, r1, 0x20) r6 = mmap$binder(&(0x7f0000fff000/0x1000)=nil, 0x1000, 0x1, 0x11, r1, 0xffffffff00000001) ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000100)={0x58, 0x0, &(0x7f0000000040)=[@decrefs={0x40046307, 0x2}, @clear_death={0x400c630f, 0x1}, @clear_death={0x400c630f, 0x1}, @decrefs, @free_buffer={0x40086303, r4}, @free_buffer={0x40086303, r5}, @free_buffer={0x40086303, r6}, @exit_looper], 0xaa, 0x0, &(0x7f00000001c0)="1979d03a4f096c29c8b2f08b4f2042df5ade2231d4b98be88c901e657de4b9c834ba33b063f51e41756c9b1186022e9a83afdb72d1328157a12bea9a2df11f291a9955715a89b37b6687f054387c321a49b094603701348bffcea6373c5b3fdd6c0928b5fcdb174ffea5461a0a69a64bca7d787e3897f08060c6b36680c667cbfa6646dfb13904f95b7b34508da494ed6b077f6b5d0c76720d8892cd6d3661ab10212fc3be7351cb8a82"}) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) 07:20:29 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(0xffffffffffffffff, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:29 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) r4 = dup2(r3, r2) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$DRM_IOCTL_MAP_BUFS(r4, 0xc0186419, &(0x7f0000000440)={0x6, &(0x7f0000000080)=""/7, &(0x7f0000000380)=[{0x5, 0x1000, 0x2, &(0x7f0000000980)=""/4096}, {0x7, 0x1000, 0x761, &(0x7f0000001980)=""/4096}, {0xfff, 0xed, 0x7ff, &(0x7f00000000c0)=""/237}, {0x3f, 0x0, 0x200000, &(0x7f00000001c0)}, {0x0, 0xa1, 0x4, &(0x7f0000000200)=""/161}, {0x6e6, 0x8e, 0x201, &(0x7f00000002c0)=""/142}]}) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) r7 = openat$selinux_status(0xffffffffffffff9c, &(0x7f0000000480)='/selinux/status\x00', 0x0, 0x0) ioctl$KVM_CREATE_VM(r7, 0xae01, 0x0) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='\x00'], 0x1) 07:20:29 executing program 3: socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={0xffffffffffffffff}) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) prctl$PR_SET_MM(0x23, 0x5, &(0x7f0000ffc000/0x2000)=nil) [ 1549.406271] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1549.419988] Node 0 DMA32 free:29416kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:1340kB local_pcp:680kB free_cma:0kB 07:20:29 executing program 3: r0 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ubi_ctrl\x00', 0x0, 0x0) ioctl$ASHMEM_GET_SIZE(r0, 0x40046f41, 0x76006e) socket$nl_route(0x10, 0x3, 0x0) getsockopt(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0) socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8914, &(0x7f0000000040)='lo\x00\x96o\xd6Q\xb9Y\xa9\xc8J,\x00\xd2\x97\x04\x03\xdc\r') ioctl$PERF_EVENT_IOC_SET_FILTER(r1, 0x8914, &(0x7f0000000300)='lo\x00\x96o8\x14d\xa1\xe3\xd7]b}\x1f\xa1Y\xad4\x90\x9d`\xd2\x98\x00\x00\x00 \'Y\x17]\x15c\xcaR\xdd\x98OC\x89\x1b\xe7\x84\xe2\x05\x80w\xd2|D\x8dK\x14Bx\xcbuH\xc2\xeec\xbf<>Y\x1a\xfc\x1f9OB\x81\x89\x186\xc5q@n\xb4\xb6s\xb0\x00\x00\x00\x00\x00\b\x00\x00\xda\xef\xecE\xec\xd5I\xb2\x9b\xfe\x8d\x90?\x00\xe9\xe4~g:\xc1\xb2ak\x96\xbb\xa7\xe2\xc0\xdc\xf9Q\b\xeb\x16\x7fT\x11\xd3\r7\xe6\"f\xcf\x8e\xabd\x0ftp\x82\xae\xd2\x15\x8e+c\xf6\xbf\xe14>\xa6-\xa5c\xde\xd7\xab\xea\x1f\xf8s2\x9cVF\xd5\x18\xfe\x0e\x8f \x01\x00\x00y.\xfc*\x82\xa5\xa1p5\xc8{\'m\xab\xe8\x99\xebw#\x8at\x1c\x80\xfc\xb0\x95\xa2\xa7\xd7,Y]E8\x83X\xf5F\xdc\x88-\xf5\xb0\xb5^\xdb\x1a\xb6\xaa\x14\xe2\rh^J-\xd1\xbaUn\x04\'%\x1c\xb5\xbf\xb6\x90\xb4\xc2\x7f]/\xb3\xe7\xc9\'\x94\xcfIo\xdf\x04\x95\xb5\x06\x84\x1fH>\xda\xc5\x04 \x94\x88\xeb\'\xd4;6\x7f\xd9\x99-\x1b|G\x8d\xd4\xb9%\xaaQ\xa0K\x10\x03\x93\xe1\xcc\xe7o\x80\xb2\xcf\x8a\xc9(\r\xa8\x0f&\xb1\xf3\xff0\f\x82%_\x92\x8b\xc4\xb9\xd9\xe7\xf2\xe4\xc1i#\xdc\x87A\xb9\xc7\r\x92\xfa\x11\x11\xb5\x1f\x03\x9d\xdd\x1bj\xdf\xacg\xe3\xa0S\xd3\x8a\xe1n\x97\xea\xf5\xa0\'\v\xe9\xa0\xf1 f\xaan\xcf\xb5i\xb6d\xbc\x92\v\xd58\x16\b\xb3_:\xa4!\ny\xc4&\nWMM\xa8\xc4\v\x9f\x01o\xf4\xab&\xb6\x17\x02P\xc3!N\xa1\x86\r\xd7\x04\xf1\xc0!\xed\xff\xee$\xc89\x8cB0\xd1') getsockopt$IPT_SO_GET_REVISION_MATCH(r1, 0x0, 0x42, &(0x7f0000000000)={'IDLETIMER\x00'}, &(0x7f0000000180)=0x1e) syz_mount_image$xfs(&(0x7f00000000c0)='xfs\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0) getpeername(r0, &(0x7f0000000100)=@l2, &(0x7f0000000040)=0x80) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x81, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$ubi_ctrl(0xffffffffffffff9c, &(0x7f0000000080)='/dev/ubi_ctrl\x00', 0x0, 0x0) ioctl$ASHMEM_GET_SIZE(r2, 0x40186f40, 0x76006e) 07:20:29 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(0xffffffffffffffff, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1549.644675] lowmem_reserve[]: 0 0 0 0 0 [ 1549.662111] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 07:20:29 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) ioctl$SNDCTL_DSP_NONBLOCK(r1, 0x500e, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f0000d6cff0)=[@in={0x2, 0x4e20, @loopback}], 0x10) sendto$inet(0xffffffffffffffff, &(0x7f0000fa3fff)='\t', 0x1, 0x0, &(0x7f00006f7000)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10) sendto$inet(0xffffffffffffffff, &(0x7f00003cef9f)='7', 0x1, 0x0, &(0x7f0000618000)={0x2, 0x4e20, @loopback}, 0x10) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f000025e000)={0x2, [0x0, 0x0]}, &(0x7f0000a8a000)=0xc) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x7a, &(0x7f000059aff8)={r4}, &(0x7f000034f000)=0x2059b000) setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r3, 0x84, 0x19, &(0x7f0000000100)={r4, 0x6}, 0x8) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$FBIOPUT_VSCREENINFO(r3, 0x4601, &(0x7f0000000480)={0x300, 0x20, 0x1000, 0x240, 0x7f, 0x2, 0x18, 0x1, {0x400, 0x80000001, 0x1}, {0x3, 0x3f, 0x1}, {0x400}, {0xfffffff9, 0x0, 0x1}, 0x2, 0x0, 0x0, 0x81, 0x0, 0xffff, 0x3ff, 0x5, 0x5, 0x74f375ec, 0xffffff80, 0x7, 0x7, 0x200, 0x2, 0x8}) write$binfmt_elf32(r0, &(0x7f0000000540)=ANY=[@ANYBLOB="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"/670], 0x297) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = fcntl$dupfd(r5, 0x0, r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) setsockopt$IPT_SO_SET_ADD_COUNTERS(r6, 0x0, 0x41, &(0x7f0000000040)={'raw\x00', 0x5, [{}, {}, {}, {}, {}]}, 0x78) [ 1549.738950] device lo entered promiscuous mode [ 1549.762463] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1549.775460] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready [ 1549.795596] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1549.833556] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready [ 1549.840478] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1549.848355] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1549.857674] lowmem_reserve[]: 0 0 0 0 0 [ 1549.870513] CPU: 1 PID: 26210 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1549.878427] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1549.887794] Call Trace: [ 1549.890399] dump_stack+0x13e/0x194 [ 1549.894052] warn_alloc.cold+0x96/0x1af [ 1549.898056] ? zone_watermark_ok_safe+0x280/0x280 [ 1549.903181] ? wait_for_completion+0x390/0x390 [ 1549.907778] __alloc_pages_slowpath+0x2114/0x26c0 [ 1549.912638] ? warn_alloc+0xf0/0xf0 [ 1549.916271] ? find_held_lock+0x2d/0x110 [ 1549.920338] ? fs_reclaim_acquire+0x10/0x10 [ 1549.925748] __alloc_pages_nodemask+0x5d3/0x700 [ 1549.930432] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1549.935462] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1549.940311] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1549.945346] alloc_pages_current+0xe7/0x1e0 [ 1549.949675] kvm_mmu_create+0xd1/0x1c0 [ 1549.953581] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1549.957910] ? alloc_pages_current+0xef/0x1e0 [ 1549.962562] kvm_vcpu_init+0x26d/0x360 [ 1549.966488] vmx_create_vcpu+0xf3/0x2900 [ 1549.970828] ? __mutex_unlock_slowpath+0x75/0x780 [ 1549.976902] ? futex_wake+0x11c/0x3d0 [ 1549.980715] ? handle_rdmsr+0x6b0/0x6b0 [ 1549.984710] kvm_vm_ioctl+0x49c/0x1430 [ 1549.988619] ? __lock_acquire+0x5f7/0x4620 [ 1549.992865] ? kvm_vcpu_release+0xa0/0xa0 [ 1549.997040] ? trace_hardirqs_on+0x10/0x10 [ 1550.007465] ? trace_hardirqs_on+0x10/0x10 [ 1550.011724] ? save_trace+0x290/0x290 [ 1550.015533] ? __might_fault+0x104/0x1b0 [ 1550.019612] ? kvm_vcpu_release+0xa0/0xa0 [ 1550.023770] do_vfs_ioctl+0x75a/0xfe0 [ 1550.027583] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1550.032350] ? ioctl_preallocate+0x1a0/0x1a0 [ 1550.036783] ? security_file_ioctl+0x76/0xb0 [ 1550.041198] ? security_file_ioctl+0x83/0xb0 [ 1550.045625] SyS_ioctl+0x7f/0xb0 [ 1550.048996] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1550.052994] do_syscall_64+0x1d5/0x640 [ 1550.056907] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1550.062129] RIP: 0033:0x45c849 [ 1550.065319] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1550.073033] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1550.080312] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1550.087598] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1550.094879] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1550.102150] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1550.111333] CPU: 1 PID: 26220 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1550.119255] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1550.128617] Call Trace: [ 1550.131220] dump_stack+0x13e/0x194 [ 1550.134864] warn_alloc.cold+0x96/0x1af [ 1550.138949] ? zone_watermark_ok_safe+0x280/0x280 [ 1550.143819] ? wait_for_completion+0x390/0x390 [ 1550.148503] __alloc_pages_slowpath+0x2114/0x26c0 [ 1550.153369] ? warn_alloc+0xf0/0xf0 [ 1550.157009] ? find_held_lock+0x2d/0x110 [ 1550.161087] ? fs_reclaim_acquire+0x10/0x10 [ 1550.165462] __alloc_pages_nodemask+0x5d3/0x700 [ 1550.170157] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1550.175188] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1550.180046] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1550.185088] alloc_pages_current+0xe7/0x1e0 [ 1550.189428] kvm_mmu_create+0xd1/0x1c0 [ 1550.193359] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1550.197690] ? alloc_pages_current+0xef/0x1e0 [ 1550.202198] kvm_vcpu_init+0x26d/0x360 [ 1550.206096] vmx_create_vcpu+0xf3/0x2900 [ 1550.210176] ? __mutex_unlock_slowpath+0x75/0x780 [ 1550.215026] ? futex_wake+0x11c/0x3d0 [ 1550.218832] ? handle_rdmsr+0x6b0/0x6b0 [ 1550.222817] kvm_vm_ioctl+0x49c/0x1430 [ 1550.226711] ? __lock_acquire+0x5f7/0x4620 [ 1550.231048] ? kvm_vcpu_release+0xa0/0xa0 [ 1550.235204] ? trace_hardirqs_on+0x10/0x10 [ 1550.239451] ? trace_hardirqs_on+0x10/0x10 [ 1550.243695] ? save_trace+0x290/0x290 [ 1550.247504] ? __might_fault+0x104/0x1b0 [ 1550.251579] ? kvm_vcpu_release+0xa0/0xa0 [ 1550.255748] do_vfs_ioctl+0x75a/0xfe0 [ 1550.259556] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1550.264328] ? ioctl_preallocate+0x1a0/0x1a0 [ 1550.268931] ? security_file_ioctl+0x76/0xb0 [ 1550.273350] ? security_file_ioctl+0x83/0xb0 [ 1550.277769] SyS_ioctl+0x7f/0xb0 [ 1550.281145] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1550.285129] do_syscall_64+0x1d5/0x640 [ 1550.289030] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1550.294225] RIP: 0033:0x45c849 [ 1550.297417] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1550.305129] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1550.312580] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1550.319855] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1550.327222] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff 07:20:30 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(0xffffffffffffffff, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1550.334526] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1550.345956] Node 1 Normal free:2147392kB min:53612kB low:67012kB high:80412kB active_anon:1218440kB inactive_anon:16kB active_file:28968kB inactive_file:25944kB unevictable:0kB writepending:168kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12864kB pagetables:29276kB bounce:0kB free_pcp:580kB local_pcp:200kB free_cma:0kB [ 1550.461257] lowmem_reserve[]: 0 0 0 0 0 [ 1550.473626] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1550.524518] Node 0 DMA32: 93*4kB (UMH) 1177*8kB (UMEH) 771*16kB (UE) 225*32kB (UEH) 3*64kB (EH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 29516kB [ 1550.580098] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1550.605642] Node 1 Normal: 298*4kB (UME) 421*8kB (UME) 322*16kB (UME) 233*32kB (UME) 107*64kB (UME) 49*128kB (UM) 39*256kB (UME) 18*512kB (UM) 11*1024kB (UME) 8*2048kB (UME) 506*4096kB (UM) = 2149712kB [ 1550.659304] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1550.662753] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1550.694095] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1550.714519] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1550.719943] CPU: 0 PID: 26226 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1550.724029] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1550.727836] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1550.727840] Call Trace: [ 1550.727858] dump_stack+0x13e/0x194 [ 1550.727871] warn_alloc.cold+0x96/0x1af [ 1550.727882] ? zone_watermark_ok_safe+0x280/0x280 [ 1550.757808] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1550.761093] ? wait_for_completion+0x390/0x390 [ 1550.761108] __alloc_pages_slowpath+0x2114/0x26c0 [ 1550.761130] ? warn_alloc+0xf0/0xf0 [ 1550.761170] ? find_held_lock+0x2d/0x110 [ 1550.761183] ? fs_reclaim_acquire+0x10/0x10 [ 1550.774361] 14281 total pagecache pages [ 1550.779195] __alloc_pages_nodemask+0x5d3/0x700 [ 1550.779209] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1550.793092] 0 pages in swap cache [ 1550.795241] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1550.795252] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1550.795271] alloc_pages_current+0xe7/0x1e0 [ 1550.803597] Swap cache stats: add 0, delete 0, find 0/0 [ 1550.804944] kvm_mmu_create+0xd1/0x1c0 [ 1550.804959] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1550.804969] ? alloc_pages_current+0xef/0x1e0 [ 1550.804982] kvm_vcpu_init+0x26d/0x360 [ 1550.810391] Free swap = 0kB [ 1550.813290] vmx_create_vcpu+0xf3/0x2900 [ 1550.813309] ? __mutex_unlock_slowpath+0x75/0x780 [ 1550.813320] ? futex_wake+0x11c/0x3d0 [ 1550.813331] ? handle_rdmsr+0x6b0/0x6b0 [ 1550.822882] Total swap = 0kB [ 1550.828026] kvm_vm_ioctl+0x49c/0x1430 [ 1550.828042] ? __lock_acquire+0x5f7/0x4620 [ 1550.828050] ? kvm_vcpu_release+0xa0/0xa0 [ 1550.828061] ? trace_hardirqs_on+0x10/0x10 [ 1550.843250] 1965979 pages RAM [ 1550.844631] ? trace_hardirqs_on+0x10/0x10 [ 1550.844647] ? save_trace+0x290/0x290 [ 1550.850570] 0 pages HighMem/MovableOnly [ 1550.851706] ? __might_fault+0x104/0x1b0 [ 1550.851724] ? kvm_vcpu_release+0xa0/0xa0 [ 1550.851738] do_vfs_ioctl+0x75a/0xfe0 [ 1550.857758] 339049 pages reserved [ 1550.860367] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1550.860381] ? ioctl_preallocate+0x1a0/0x1a0 [ 1550.860399] ? security_file_ioctl+0x76/0xb0 [ 1550.860407] ? security_file_ioctl+0x83/0xb0 [ 1550.860418] SyS_ioctl+0x7f/0xb0 [ 1550.860426] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1550.860441] do_syscall_64+0x1d5/0x640 [ 1550.867879] 0 pages cma reserved [ 1550.871294] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1550.871302] RIP: 0033:0x45c849 [ 1550.871307] RSP: 002b:00007f75f725dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1550.871316] RAX: ffffffffffffffda RBX: 00007f75f725e6d4 RCX: 000000000045c849 [ 1550.871321] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1550.871325] RBP: 000000000076bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 1550.871330] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1550.871335] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bfac [ 1551.127460] Mem-Info: [ 1551.136441] active_anon:797299 inactive_anon:200 isolated_anon:0 [ 1551.136441] active_file:7251 inactive_file:6497 isolated_file:0 [ 1551.136441] unevictable:0 dirty:25 writeback:0 unstable:0 [ 1551.136441] slab_reclaimable:12772 slab_unreclaimable:131056 [ 1551.136441] mapped:59086 shmem:545 pagetables:16463 bounce:0 [ 1551.136441] free:547748 free_pcp:624 free_cma:0 [ 1551.240097] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:36kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes 07:20:31 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) utime(&(0x7f0000000200)='./file0\x00', &(0x7f0000000240)={0xd73, 0xffffffffffff98ca}) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) recvfrom$inet6(0xffffffffffffffff, &(0x7f0000000100)=""/238, 0xee, 0x40000000, &(0x7f0000000080)={0xa, 0x4e23, 0x8001, @loopback, 0xff}, 0x1c) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b75fb3488fd8015bba4c81036c93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377aba09e7b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc04d96d9ec2db07478f347edbd6404923ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6afbbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd37428617de4cdd6f53c419ce31054182fd098af7b7f1b1152c691611f897558d4b755cb783978d9859b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5d10146702f78b233b5208752726ed9f0c340d494b92d19cc930bb8a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f558b2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc978f66df7df4557c91024a8dc130a28ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab367c0de2659cc38d2f33ddd86e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe12a33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047706865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000d372bdd6d89dc1ecf63c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d8191643"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r5, 0x84, 0x15, &(0x7f00000002c0)={0x2}, 0x1) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r3, r2) socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000280)=ANY=[@ANYBLOB="2440406e485b8903955f13937a200dbf8f8053eb9201e582ce506b94fa98c8f4ca"], 0x1) [ 1551.320106] Node 1 active_anon:1217936kB inactive_anon:16kB active_file:28968kB inactive_file:25988kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27412kB dirty:96kB writeback:0kB shmem:976kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 07:20:31 executing program 3: clone(0x20000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) socketpair(0x18, 0x0, 0x2, &(0x7f0000000000)) ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000140)={'veth1_vlan\x00', {0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}}) 07:20:31 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$VIDIOC_QUERYCTRL(r3, 0xc0445624, &(0x7f0000000040)={0x0, 0x7, "0660dcf2848313a9eedcd5d472ff0f6e6a67f953c5e2100596eda2f2a0f6fc5e", 0xde, 0xd48, 0x3, 0x3}) [ 1551.380071] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1551.479565] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1551.525693] Node 0 DMA32 free:29572kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:36kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:1436kB local_pcp:728kB free_cma:0kB [ 1551.603489] lowmem_reserve[]: 0 0 0 0 0 [ 1551.607548] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1551.626560] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1551.670085] lowmem_reserve[]: 0 0 0 0 0 [ 1551.674324] Node 1 Normal free:2153020kB min:53612kB low:67012kB high:80412kB active_anon:1218036kB inactive_anon:16kB active_file:28968kB inactive_file:25988kB unevictable:0kB writepending:0kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12640kB pagetables:28840kB bounce:0kB free_pcp:996kB local_pcp:692kB free_cma:0kB [ 1551.708035] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1551.740166] lowmem_reserve[]: 0 0 0 0 0 [ 1551.744208] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1551.746546] CPU: 0 PID: 26283 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1551.766795] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1551.776159] Call Trace: [ 1551.778755] dump_stack+0x13e/0x194 [ 1551.780099] Node 0 DMA32: [ 1551.782394] warn_alloc.cold+0x96/0x1af [ 1551.782401] 93*4kB [ 1551.785229] ? zone_watermark_ok_safe+0x280/0x280 [ 1551.789187] (UMH) [ 1551.791418] ? wait_for_completion+0x390/0x390 [ 1551.791431] __alloc_pages_slowpath+0x2114/0x26c0 [ 1551.791453] ? warn_alloc+0xf0/0xf0 [ 1551.791462] ? find_held_lock+0x2d/0x110 [ 1551.791475] ? fs_reclaim_acquire+0x10/0x10 [ 1551.810052] 1187*8kB [ 1551.812053] __alloc_pages_nodemask+0x5d3/0x700 [ 1551.816085] (UMEH) [ 1551.820392] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1551.820401] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1551.820409] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1551.820427] alloc_pages_current+0xe7/0x1e0 [ 1551.820442] kvm_mmu_create+0xd1/0x1c0 [ 1551.840127] 771*16kB [ 1551.844654] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1551.848949] (UE) [ 1551.852818] ? alloc_pages_current+0xef/0x1e0 [ 1551.852831] kvm_vcpu_init+0x26d/0x360 [ 1551.852843] vmx_create_vcpu+0xf3/0x2900 [ 1551.852858] ? __mutex_unlock_slowpath+0x75/0x780 [ 1551.852869] ? futex_wake+0x11c/0x3d0 [ 1551.870059] 225*32kB [ 1551.874382] ? handle_rdmsr+0x6b0/0x6b0 [ 1551.879199] (UEH) [ 1551.883009] kvm_vm_ioctl+0x49c/0x1430 [ 1551.883024] ? __lock_acquire+0x5f7/0x4620 [ 1551.883033] ? kvm_vcpu_release+0xa0/0xa0 [ 1551.883043] ? trace_hardirqs_on+0x10/0x10 [ 1551.883057] ? trace_hardirqs_on+0x10/0x10 [ 1551.883069] ? save_trace+0x290/0x290 [ 1551.883079] ? __might_fault+0x104/0x1b0 [ 1551.883093] ? kvm_vcpu_release+0xa0/0xa0 [ 1551.903071] 3*64kB [ 1551.903934] do_vfs_ioctl+0x75a/0xfe0 [ 1551.908143] (EH) [ 1551.912362] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1551.912372] ? ioctl_preallocate+0x1a0/0x1a0 [ 1551.912389] ? security_file_ioctl+0x76/0xb0 [ 1551.912397] ? security_file_ioctl+0x83/0xb0 [ 1551.912407] SyS_ioctl+0x7f/0xb0 [ 1551.912415] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1551.912427] do_syscall_64+0x1d5/0x640 [ 1551.912442] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1551.912449] RIP: 0033:0x45c849 [ 1551.912456] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 [ 1551.950074] 0*128kB [ 1551.950403] ORIG_RAX: 0000000000000010 [ 1551.950411] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1551.953762] 0*256kB [ 1551.957713] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1551.957724] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1551.990070] 0*512kB [ 1551.993518] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1551.993525] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1551.995838] 0*1024kB 0*2048kB 0*4096kB = 29596kB [ 1552.104990] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1552.140098] Node 1 Normal: 320*4kB (UME) 368*8kB (UME) 498*16kB (UME) 257*32kB (UME) 110*64kB (UME) 57*128kB (UM) 40*256kB (UME) 18*512kB (UM) 11*1024kB (UME) 8*2048kB (UME) 506*4096kB (UM) = 2154432kB [ 1552.190093] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1552.199017] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1552.230165] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1552.252473] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1552.282313] 14298 total pagecache pages [ 1552.294087] 0 pages in swap cache [ 1552.306398] Swap cache stats: add 0, delete 0, find 0/0 [ 1552.329231] Free swap = 0kB [ 1552.339887] Total swap = 0kB [ 1552.350103] 1965979 pages RAM [ 1552.359671] 0 pages HighMem/MovableOnly [ 1552.369715] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1552.378672] 339049 pages reserved [ 1552.384569] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1552.389529] 0 pages cma reserved [ 1552.390800] CPU: 0 PID: 26302 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1552.401341] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1552.410708] Call Trace: [ 1552.413313] dump_stack+0x13e/0x194 [ 1552.416957] warn_alloc.cold+0x96/0x1af [ 1552.420937] ? zone_watermark_ok_safe+0x280/0x280 [ 1552.425800] ? wait_for_completion+0x390/0x390 [ 1552.430394] __alloc_pages_slowpath+0x2114/0x26c0 [ 1552.435285] ? warn_alloc+0xf0/0xf0 [ 1552.438920] ? find_held_lock+0x2d/0x110 [ 1552.443010] ? fs_reclaim_acquire+0x10/0x10 [ 1552.447349] __alloc_pages_nodemask+0x5d3/0x700 [ 1552.452028] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1552.457049] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1552.461900] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1552.466940] alloc_pages_current+0xe7/0x1e0 [ 1552.471299] kvm_mmu_create+0xd1/0x1c0 [ 1552.475191] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1552.479514] ? alloc_pages_current+0xef/0x1e0 [ 1552.484023] kvm_vcpu_init+0x26d/0x360 [ 1552.487917] vmx_create_vcpu+0xf3/0x2900 [ 1552.491993] ? __mutex_unlock_slowpath+0x75/0x780 [ 1552.496843] ? futex_wake+0x11c/0x3d0 [ 1552.500656] ? handle_rdmsr+0x6b0/0x6b0 [ 1552.504641] kvm_vm_ioctl+0x49c/0x1430 [ 1552.508537] ? __lock_acquire+0x5f7/0x4620 [ 1552.512780] ? kvm_vcpu_release+0xa0/0xa0 [ 1552.516933] ? trace_hardirqs_on+0x10/0x10 [ 1552.521175] ? trace_hardirqs_on+0x10/0x10 [ 1552.525523] ? save_trace+0x290/0x290 [ 1552.529326] ? __might_fault+0x104/0x1b0 [ 1552.533393] ? kvm_vcpu_release+0xa0/0xa0 [ 1552.537560] do_vfs_ioctl+0x75a/0xfe0 [ 1552.541367] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1552.546130] ? ioctl_preallocate+0x1a0/0x1a0 [ 1552.550554] ? security_file_ioctl+0x76/0xb0 [ 1552.554968] ? security_file_ioctl+0x83/0xb0 [ 1552.559381] SyS_ioctl+0x7f/0xb0 [ 1552.562752] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1552.566739] do_syscall_64+0x1d5/0x640 [ 1552.570640] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1552.575863] RIP: 0033:0x45c849 07:20:32 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$getownex(r2, 0x10, &(0x7f0000000440)) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$KVM_GET_IRQCHIP(r3, 0xc208ae62, &(0x7f0000000080)) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) perf_event_open(&(0x7f0000000100)={0x2, 0x70, 0xd4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r6 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000080)=ANY=[@ANYBLOB="280000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="000000004600000008001b0000000000"], 0x28}}, 0x0) ioctl$SG_GET_REQUEST_TABLE(r5, 0x2286, &(0x7f00000002c0)) r7 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r7, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r7, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r7, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000480)=ANY=[@ANYBLOB="fd4b77ffc1c64e3ef272"], 0x1) 07:20:32 executing program 3: r0 = socket$inet_udplite(0x2, 0x2, 0x88) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) clone(0x3a3dd400a400ab01, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r2 = socket$inet(0x2, 0x4000000000000001, 0x0) setsockopt$IPT_SO_SET_REPLACE(r2, 0x4000000000000, 0x40, &(0x7f0000000940)=@raw={'raw\x00', 0x2, 0x3, 0x260, 0xf0, 0xf0, 0xf0, 0x0, 0xf0, 0x1c8, 0x1c8, 0x1c8, 0x1c8, 0x1c8, 0x3, 0x0, {[{{@uncond=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4], 0x0, 0xd0, 0xf0, 0x0, {}, [@common=@unspec=@pkttype={{0x28, 'pkttype\x00'}}, @common=@unspec=@time={{0x38, 'time\x00'}}]}, @unspec=@NOTRACK={0x20, 'NOTRACK\x00'}}, {{@ip={@multicast2, @broadcast, 0x0, 0x0, 'ipvlan1\x00', 'bond_slave_0\x00'}, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x4c000000, 0x0, 'pptp\x00', 'syz1\x00'}}}], {{[], 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x2c0) sendmsg$TIPC_CMD_GET_NODES(0xffffffffffffffff, 0x0, 0x0) 07:20:32 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x0) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:32 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000001c0)='/dev/ttyS3\x00', 0x0, 0x0) ioctl$TIOCVHANGUP(r2, 0x5437, 0x0) syz_genetlink_get_family_id$fou(&(0x7f0000000040)='fou\x00') socket$nl_route(0x10, 0x3, 0x0) socket$inet6_udp(0xa, 0x2, 0x0) socket$netlink(0x10, 0x3, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) 07:20:32 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f00000001c0)=ANY=[@ANYBLOB="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"/302, @ANYRES32=0x0, @ANYRES32=0x0], &(0x7f0000a8a000)=0xc) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(0xffffffffffffffff, 0x84, 0x7a, &(0x7f000059aff8)={r6}, &(0x7f000034f000)=0x2059b000) setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(0xffffffffffffffff, 0x84, 0x19, &(0x7f0000000180)={r6}, 0x8) ioctl$VIDIOC_S_FBUF(r5, 0x4030560b, &(0x7f0000000140)={0x0, 0x24, &(0x7f0000000080)="8913d4c851c7c87a46754eca2411b5e833421340b896107771bfb833c52c04d3f1a1ba62b7a66163786e909169669246ff6e266318a70e4a01a53b7c7edc42180d2a3442e167e5a755351aa81a31a008666a428dbe71af7378649db39fc3ba108b5ab7b7ae8bfec01a0a11516a8fc9b3d76719ac88e9cae77759effe77b792aeb28d369dbdfd78a3c0", {0x1f, 0x8, 0x31384142, 0x2, 0x5, 0x101, 0xa, 0x8}}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)) r7 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) [ 1552.579054] RSP: 002b:00007f4cd9a86c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1552.586767] RAX: ffffffffffffffda RBX: 00007f4cd9a876d4 RCX: 000000000045c849 [ 1552.594042] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1552.601323] RBP: 000000000076c040 R08: 0000000000000000 R09: 0000000000000000 [ 1552.608605] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1552.615886] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076c04c 07:20:32 executing program 3: r0 = socket$inet6(0xa, 0x3, 0x6) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={[], [], @dev={0xac, 0x14, 0x14, 0xc}}}, 0x1c) [ 1552.744230] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 1552.775227] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1552.821850] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready 07:20:33 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x0) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1552.925141] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) 07:20:33 executing program 3: r0 = bpf$MAP_CREATE(0x1000000000000, &(0x7f00000000c0)={0x2, 0x800000000000004, 0x400000, 0x1}, 0x40) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000000)={r0, &(0x7f0000000100), &(0x7f0000000280)=""/102}, 0x20) [ 1553.006697] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1553.066191] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1553.077042] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1553.103535] CPU: 0 PID: 26331 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1553.111594] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1553.120965] Call Trace: [ 1553.123558] dump_stack+0x13e/0x194 [ 1553.127190] warn_alloc.cold+0x96/0x1af [ 1553.131172] ? zone_watermark_ok_safe+0x280/0x280 [ 1553.136037] ? wait_for_completion+0x390/0x390 [ 1553.140638] __alloc_pages_slowpath+0x2114/0x26c0 [ 1553.145494] ? warn_alloc+0xf0/0xf0 [ 1553.149133] ? find_held_lock+0x2d/0x110 [ 1553.153234] ? fs_reclaim_acquire+0x10/0x10 [ 1553.157580] __alloc_pages_nodemask+0x5d3/0x700 [ 1553.162258] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1553.167285] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1553.172171] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1553.177386] alloc_pages_current+0xe7/0x1e0 [ 1553.181731] kvm_mmu_create+0xd1/0x1c0 [ 1553.185736] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1553.190182] ? alloc_pages_current+0xef/0x1e0 [ 1553.194781] kvm_vcpu_init+0x26d/0x360 [ 1553.198690] vmx_create_vcpu+0xf3/0x2900 [ 1553.202779] ? __mutex_unlock_slowpath+0x75/0x780 [ 1553.207642] ? futex_wake+0x11c/0x3d0 [ 1553.211458] ? handle_rdmsr+0x6b0/0x6b0 [ 1553.215463] kvm_vm_ioctl+0x49c/0x1430 [ 1553.219365] ? __lock_acquire+0x5f7/0x4620 [ 1553.223618] ? kvm_vcpu_release+0xa0/0xa0 [ 1553.227779] ? check_preemption_disabled+0x35/0x240 [ 1553.232816] ? perf_trace_lock+0x109/0x4b0 [ 1553.237070] ? check_preemption_disabled+0x35/0x240 [ 1553.242099] ? perf_trace_lock+0x109/0x4b0 [ 1553.246341] ? save_trace+0x290/0x290 [ 1553.250158] ? SOFTIRQ_verbose+0x10/0x10 [ 1553.254239] ? kvm_vcpu_release+0xa0/0xa0 [ 1553.258404] do_vfs_ioctl+0x75a/0xfe0 [ 1553.262210] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1553.266984] ? ioctl_preallocate+0x1a0/0x1a0 [ 1553.271419] ? security_file_ioctl+0x76/0xb0 [ 1553.275843] ? security_file_ioctl+0x83/0xb0 [ 1553.280267] SyS_ioctl+0x7f/0xb0 [ 1553.283639] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1553.287624] do_syscall_64+0x1d5/0x640 [ 1553.291525] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1553.296744] RIP: 0033:0x45c849 [ 1553.299929] RSP: 002b:00007f75f725dc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1553.307650] RAX: ffffffffffffffda RBX: 00007f75f725e6d4 RCX: 000000000045c849 [ 1553.314931] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1553.322211] RBP: 000000000076bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 1553.329492] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1553.336782] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bfac [ 1553.346110] CPU: 1 PID: 26318 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1553.354022] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1553.363387] Call Trace: [ 1553.366012] dump_stack+0x13e/0x194 [ 1553.369659] warn_alloc.cold+0x96/0x1af [ 1553.373677] ? zone_watermark_ok_safe+0x280/0x280 [ 1553.378544] ? wait_for_completion+0x390/0x390 [ 1553.383158] __alloc_pages_slowpath+0x2114/0x26c0 [ 1553.388040] ? warn_alloc+0xf0/0xf0 [ 1553.391694] ? find_held_lock+0x2d/0x110 [ 1553.395775] ? fs_reclaim_acquire+0x10/0x10 [ 1553.400129] __alloc_pages_nodemask+0x5d3/0x700 [ 1553.404818] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1553.409857] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1553.411955] warn_alloc_show_mem: 2 callbacks suppressed [ 1553.411959] Mem-Info: [ 1553.414705] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1553.414732] alloc_pages_current+0xe7/0x1e0 [ 1553.414747] kvm_mmu_create+0xd1/0x1c0 [ 1553.414761] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1553.430845] active_anon:797364 inactive_anon:200 isolated_anon:0 [ 1553.430845] active_file:7249 inactive_file:6510 isolated_file:0 [ 1553.430845] unevictable:0 dirty:53 writeback:0 unstable:0 [ 1553.430845] slab_reclaimable:12774 slab_unreclaimable:130756 [ 1553.430845] mapped:59093 shmem:546 pagetables:16554 bounce:0 [ 1553.430845] free:547866 free_pcp:352 free_cma:0 [ 1553.431934] ? alloc_pages_current+0xef/0x1e0 [ 1553.431952] kvm_vcpu_init+0x26d/0x360 [ 1553.431966] vmx_create_vcpu+0xf3/0x2900 [ 1553.431982] ? __mutex_unlock_slowpath+0x75/0x780 [ 1553.448952] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:28kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1553.473868] ? futex_wake+0x11c/0x3d0 [ 1553.473888] ? handle_rdmsr+0x6b0/0x6b0 [ 1553.473905] kvm_vm_ioctl+0x49c/0x1430 [ 1553.473921] ? __lock_acquire+0x5f7/0x4620 [ 1553.473931] ? kvm_vcpu_release+0xa0/0xa0 [ 1553.473940] ? check_preemption_disabled+0x35/0x240 [ 1553.473952] ? perf_trace_lock+0x109/0x4b0 [ 1553.473964] ? check_preemption_disabled+0x35/0x240 [ 1553.473976] ? perf_trace_lock+0x109/0x4b0 [ 1553.473990] ? save_trace+0x290/0x290 [ 1553.561161] ? SOFTIRQ_verbose+0x10/0x10 [ 1553.565235] ? kvm_vcpu_release+0xa0/0xa0 [ 1553.569380] do_vfs_ioctl+0x75a/0xfe0 [ 1553.573191] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1553.577970] ? ioctl_preallocate+0x1a0/0x1a0 [ 1553.582388] ? security_file_ioctl+0x76/0xb0 [ 1553.586785] ? security_file_ioctl+0x83/0xb0 [ 1553.591185] SyS_ioctl+0x7f/0xb0 [ 1553.594541] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1553.598508] do_syscall_64+0x1d5/0x640 [ 1553.602392] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1553.607578] RIP: 0033:0x45c849 [ 1553.610754] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 07:20:33 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x0) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1553.618454] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1553.625712] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1553.632977] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1553.640270] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1553.647559] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1553.777700] Node 1 active_anon:1218296kB inactive_anon:16kB active_file:28968kB inactive_file:26032kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27540kB dirty:208kB writeback:0kB shmem:980kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1553.934226] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1554.046725] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1554.053507] Node 0 DMA32 free:29060kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:28kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13152kB pagetables:36860kB bounce:0kB free_pcp:788kB local_pcp:628kB free_cma:0kB [ 1554.143859] lowmem_reserve[]: 0 0 0 0 0 [ 1554.149758] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1554.209918] lowmem_reserve[]: 0 0 0 0 0 [ 1554.219953] Node 1 Normal free:2153660kB min:53612kB low:67012kB high:80412kB active_anon:1218300kB inactive_anon:16kB active_file:28968kB inactive_file:26032kB unevictable:0kB writepending:228kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12768kB pagetables:29192kB bounce:0kB free_pcp:1144kB local_pcp:440kB free_cma:0kB [ 1554.329264] lowmem_reserve[]: 0 0 0 0 0 [ 1554.333598] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1554.354079] Node 0 DMA32: 64*4kB (UMH) 1146*8kB (UME) 771*16kB (UE) 224*32kB (UEH) 3*64kB (EH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 29120kB [ 1554.383549] warn_alloc_show_mem: 1 callbacks suppressed [ 1554.383552] Mem-Info: [ 1554.399567] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 1554.429885] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 1554.445850] active_anon:797340 inactive_anon:200 isolated_anon:0 [ 1554.445850] active_file:7249 inactive_file:6510 isolated_file:0 [ 1554.445850] unevictable:0 dirty:58 writeback:0 unstable:0 [ 1554.445850] slab_reclaimable:12770 slab_unreclaimable:130617 [ 1554.445850] mapped:59089 shmem:546 pagetables:16477 bounce:0 [ 1554.445850] free:548260 free_pcp:440 free_cma:0 [ 1554.493036] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 1554.500919] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1554.545081] Node 1 Normal: 144*4kB (UME) 363*8kB (UME) 566*16kB (UME) 268*32kB (UME) 108*64kB (UME) 48*128kB (UM) 39*256kB (UME) 16*512kB (UM) 11*1024kB (UME) 9*2048kB (UME) 506*4096kB (UM) = 2154616kB [ 1554.593163] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1554.612894] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:28kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1554.643380] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1554.654019] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1554.659712] CPU: 0 PID: 26322 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1554.667607] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1554.676971] Call Trace: [ 1554.679570] dump_stack+0x13e/0x194 [ 1554.683227] warn_alloc.cold+0x96/0x1af [ 1554.687209] ? zone_watermark_ok_safe+0x280/0x280 [ 1554.692071] ? wait_for_completion+0x390/0x390 [ 1554.696671] __alloc_pages_slowpath+0x2114/0x26c0 [ 1554.701530] ? warn_alloc+0xf0/0xf0 [ 1554.705162] ? find_held_lock+0x2d/0x110 [ 1554.709228] ? fs_reclaim_acquire+0x10/0x10 [ 1554.713568] __alloc_pages_nodemask+0x5d3/0x700 [ 1554.718275] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1554.723299] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1554.728147] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1554.733213] alloc_pages_current+0xe7/0x1e0 [ 1554.737545] kvm_mmu_create+0xd1/0x1c0 [ 1554.741544] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1554.745874] ? alloc_pages_current+0xef/0x1e0 [ 1554.750379] kvm_vcpu_init+0x26d/0x360 [ 1554.754277] vmx_create_vcpu+0xf3/0x2900 [ 1554.758351] ? __mutex_unlock_slowpath+0x75/0x780 [ 1554.763199] ? futex_wake+0x11c/0x3d0 [ 1554.767006] ? handle_rdmsr+0x6b0/0x6b0 [ 1554.770994] kvm_vm_ioctl+0x49c/0x1430 [ 1554.774895] ? kvm_vcpu_release+0xa0/0xa0 [ 1554.779055] ? perf_trace_run_bpf_submit+0x113/0x170 [ 1554.784163] ? check_preemption_disabled+0x35/0x240 [ 1554.789190] ? perf_trace_run_bpf_submit+0x113/0x170 [ 1554.794324] ? perf_trace_lock+0x2ef/0x4b0 [ 1554.798572] ? save_trace+0x290/0x290 [ 1554.802467] ? SOFTIRQ_verbose+0x10/0x10 [ 1554.806546] ? kvm_vcpu_release+0xa0/0xa0 [ 1554.810702] do_vfs_ioctl+0x75a/0xfe0 [ 1554.814517] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1554.819286] ? ioctl_preallocate+0x1a0/0x1a0 [ 1554.823711] ? security_file_ioctl+0x76/0xb0 [ 1554.828126] ? security_file_ioctl+0x83/0xb0 [ 1554.832565] SyS_ioctl+0x7f/0xb0 [ 1554.835955] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1554.839937] do_syscall_64+0x1d5/0x640 [ 1554.843838] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1554.849031] RIP: 0033:0x45c849 [ 1554.852222] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1554.859967] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1554.867272] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000006 [ 1554.874742] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1554.882017] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1554.889422] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1554.901812] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1554.919255] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1554.929508] Node 1 active_anon:1218300kB inactive_anon:16kB active_file:28968kB inactive_file:26032kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27524kB dirty:28kB writeback:0kB shmem:980kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1554.958358] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1554.977731] 14304 total pagecache pages [ 1554.983077] 0 pages in swap cache [ 1554.986819] Swap cache stats: add 0, delete 0, find 0/0 [ 1554.993105] Free swap = 0kB [ 1554.996369] Total swap = 0kB [ 1554.999634] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1555.028508] 1965979 pages RAM [ 1555.036669] 0 pages HighMem/MovableOnly [ 1555.047178] 339049 pages reserved [ 1555.050955] 0 pages cma reserved [ 1555.067005] lowmem_reserve[]: 0 2557 2557 2557 2557 07:20:35 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r3, r2) openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vhost-vsock\x00', 0x2, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) msync(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) r7 = fcntl$dupfd(r6, 0x0, r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) ioctl$KVM_KVMCLOCK_CTRL(r7, 0xaead) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) getsockopt$EBT_SO_GET_INFO(r3, 0x0, 0x80, &(0x7f00000000c0)={'nat\x00'}, &(0x7f0000000140)=0x78) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x1) 07:20:35 executing program 3: r0 = socket$inet_udp(0x2, 0x2, 0x0) sendto$inet(r0, 0x0, 0x0, 0x0, &(0x7f0000000140)={0x2, 0x4e23, @local}, 0x10) 07:20:35 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1555.072662] Node 0 DMA32 free:29160kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:28kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13120kB pagetables:36860kB bounce:0kB free_pcp:852kB local_pcp:664kB free_cma:0kB [ 1555.209184] lowmem_reserve[]: 0 0 0 0 0 [ 1555.232669] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1555.331544] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1555.354644] lowmem_reserve[]: 0 0 0 0 0 [ 1555.359046] Node 1 Normal free:2154072kB min:53612kB low:67012kB high:80412kB active_anon:1218180kB inactive_anon:16kB active_file:28968kB inactive_file:26092kB unevictable:0kB writepending:80kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12736kB pagetables:28928kB bounce:0kB free_pcp:892kB local_pcp:568kB free_cma:0kB [ 1555.390641] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1555.400921] CPU: 0 PID: 26381 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1555.408833] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1555.418197] Call Trace: [ 1555.420794] dump_stack+0x13e/0x194 [ 1555.424432] warn_alloc.cold+0x96/0x1af [ 1555.428416] ? zone_watermark_ok_safe+0x280/0x280 [ 1555.433276] ? wait_for_completion+0x390/0x390 [ 1555.437869] __alloc_pages_slowpath+0x2114/0x26c0 [ 1555.442744] ? warn_alloc+0xf0/0xf0 [ 1555.446469] ? find_held_lock+0x2d/0x110 [ 1555.450536] ? fs_reclaim_acquire+0x10/0x10 [ 1555.454871] __alloc_pages_nodemask+0x5d3/0x700 [ 1555.459543] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1555.464558] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1555.469399] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1555.474425] alloc_pages_current+0xe7/0x1e0 [ 1555.478757] kvm_mmu_create+0xd1/0x1c0 [ 1555.482649] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1555.487055] ? alloc_pages_current+0xef/0x1e0 [ 1555.491554] kvm_vcpu_init+0x26d/0x360 [ 1555.495461] vmx_create_vcpu+0xf3/0x2900 [ 1555.499530] ? __mutex_unlock_slowpath+0x75/0x780 [ 1555.504376] ? futex_wake+0x11c/0x3d0 [ 1555.508193] ? handle_rdmsr+0x6b0/0x6b0 [ 1555.512178] kvm_vm_ioctl+0x49c/0x1430 [ 1555.516075] ? __lock_acquire+0x5f7/0x4620 [ 1555.520422] ? kvm_vcpu_release+0xa0/0xa0 [ 1555.524579] ? trace_hardirqs_on+0x10/0x10 [ 1555.528828] ? trace_hardirqs_on+0x10/0x10 [ 1555.533159] ? save_trace+0x290/0x290 [ 1555.536988] ? __might_fault+0x104/0x1b0 [ 1555.541064] ? kvm_vcpu_release+0xa0/0xa0 [ 1555.545222] do_vfs_ioctl+0x75a/0xfe0 [ 1555.549027] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1555.553791] ? ioctl_preallocate+0x1a0/0x1a0 [ 1555.558217] ? security_file_ioctl+0x76/0xb0 [ 1555.562627] ? security_file_ioctl+0x83/0xb0 [ 1555.567074] SyS_ioctl+0x7f/0xb0 [ 1555.570442] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1555.574432] do_syscall_64+0x1d5/0x640 [ 1555.578332] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1555.583523] RIP: 0033:0x45c849 [ 1555.586712] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1555.594613] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1555.601889] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1555.609187] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1555.616499] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1555.623779] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1555.639598] lowmem_reserve[]: 0 0 0 0 0 [ 1555.654927] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1555.660105] warn_alloc_show_mem: 1 callbacks suppressed [ 1555.660108] Mem-Info: [ 1555.691682] Node 0 DMA32: 635*4kB (UMEH) 1176*8kB (UMEH) 774*16kB (UEH) 224*32kB (UEH) 4*64kB (EH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 31756kB [ 1555.721253] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1555.737288] Node 1 Normal: 178*4kB (UME) 136*8kB (UME) 94*16kB (UME) 279*32kB (UME) 108*64kB (UME) 44*128kB (UM) 39*256kB (UME) 16*512kB (UM) 11*1024kB (UME) 9*2048kB (UME) 506*4096kB (UM) = 2145224kB [ 1555.740188] active_anon:797310 inactive_anon:200 isolated_anon:0 [ 1555.740188] active_file:7249 inactive_file:6525 isolated_file:0 [ 1555.740188] unevictable:0 dirty:21 writeback:0 unstable:0 [ 1555.740188] slab_reclaimable:12766 slab_unreclaimable:131874 [ 1555.740188] mapped:59113 shmem:546 pagetables:16448 bounce:0 [ 1555.740188] free:546964 free_pcp:577 free_cma:0 [ 1555.760473] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1555.815056] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1555.827644] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1555.839252] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1555.868909] 14319 total pagecache pages [ 1555.885556] 0 pages in swap cache [ 1555.891265] Swap cache stats: add 0, delete 0, find 0/0 [ 1555.897583] Free swap = 0kB [ 1555.906794] Total swap = 0kB [ 1555.910369] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:28kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1555.913875] 1965979 pages RAM [ 1555.966162] 0 pages HighMem/MovableOnly [ 1555.970690] 339049 pages reserved [ 1555.974365] 0 pages cma reserved [ 1555.984130] Node 1 active_anon:1218180kB inactive_anon:16kB active_file:28968kB inactive_file:26092kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27520kB dirty:80kB writeback:0kB shmem:980kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1556.047705] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1556.136035] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1556.141268] Node 0 DMA32 free:32648kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB writepending:0kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13120kB pagetables:36860kB bounce:0kB free_pcp:780kB local_pcp:676kB free_cma:0kB [ 1556.188998] lowmem_reserve[]: 0 0 0 0 0 [ 1556.193655] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1556.248869] lowmem_reserve[]: 0 0 0 0 0 [ 1556.252979] Node 1 Normal free:2149956kB min:53612kB low:67012kB high:80412kB active_anon:1218008kB inactive_anon:20kB active_file:28968kB inactive_file:26120kB unevictable:0kB writepending:68kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12544kB pagetables:28796kB bounce:0kB free_pcp:984kB local_pcp:372kB free_cma:0kB [ 1556.298181] lowmem_reserve[]: 0 0 0 0 0 [ 1556.306519] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1556.345518] Node 0 DMA32: 578*4kB (UMEH) 1254*8kB (UMEH) 774*16kB (UEH) 224*32kB (UEH) 4*64kB (EH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 32152kB [ 1556.371422] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1556.385813] Node 1 Normal: 214*4kB (UME) 493*8kB (UME) 176*16kB (UME) 227*32kB (UME) 109*64kB (UME) 45*128kB (UM) 38*256kB (UME) 17*512kB (UM) 11*1024kB (UME) 9*2048kB (UME) 506*4096kB (UM) = 2148320kB [ 1556.425463] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1556.446568] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1556.492399] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1556.519042] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1556.539810] 14326 total pagecache pages [ 1556.570279] 0 pages in swap cache [ 1556.573771] Swap cache stats: add 0, delete 0, find 0/0 [ 1556.579142] Free swap = 0kB [ 1556.588439] Total swap = 0kB [ 1556.591560] 1965979 pages RAM [ 1556.594848] 0 pages HighMem/MovableOnly [ 1556.598821] 339049 pages reserved [ 1556.606912] 0 pages cma reserved 07:20:36 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$VIDIOC_G_EXT_CTRLS(r4, 0xc0205647, &(0x7f0000000100)={0x990000, 0x401, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x9b0951, 0x400, [], @p_u16=&(0x7f0000000080)=0x7ff}}) ioctl$KVM_PPC_ALLOCATE_HTAB(r5, 0xc004aea7, &(0x7f0000000140)=0x4) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r6 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r6, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='p'], 0x1) 07:20:36 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010000d0700000000ff03000000000010", @ANYRES32=r2, @ANYBLOB="00000000e60000001c0012000c000100626f6e64000000000c0002000800010006000000"], 0x3c}}, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = socket$packet(0x11, 0x3, 0x300) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="280000001000250800000000000000000a000000", @ANYRES32=r5, @ANYBLOB="000000000000000008000a000f000000fad9f8c015c475c8080866213586066288d16c3a5dc2b2b2a7f54d8d984831cfec3d25f3437f94652a9431a5b19a6796a594a302e7875b3f14f42d02dfe65cf7c94e3b13cbada0e4aaa38c3fab445ce07ab06f374e56d474d14f48ca5764ad7b3ef5277520a8234da76c5bf47e707be23a04f0b3330513182bef6f497ab565e27e58127384c600000000000000bd5924932ebd158edaf639c838a0cd104b2610596bb71ee65a021da793f1fb22dff2dd034a236d441eaef1b02ee00bc9eb5bc51ec30bb91ca55faec9ffaaf9e978b60099532f323f9bfe1c0f44e18c95e83b5dad3b0ee0059f4b5ba65a3513fb9159800015cbe195dbd262f5345a4cda00"/286], 0x28}}, 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) r7 = socket(0x10, 0x2, 0x8) sendmsg$NBD_CMD_DISCONNECT(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0xfffffff0, &(0x7f0000000280)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x825, 0x0, 0x0, {0x0, 0x0, 0x0, r8}, [@IFLA_PROTO_DOWN={0x8, 0xa}]}, 0x28}}, 0x0) 07:20:36 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:36 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = open(&(0x7f0000021000)='./file0\x00', 0x0, 0x0) r3 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000003740)='NLBL_UNLBL\x00') sendmsg$NLBL_UNLABEL_C_STATICREMOVEDEF(r2, &(0x7f0000000300)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)={0x6c, r3, 0x100, 0x70bd26, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @loopback}, @NLBL_UNLABEL_A_SECCTX={0x21, 0x7, 'system_u:object_r:fonts_t:s0\x00'}, @NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @dev={0xac, 0x14, 0x14, 0x2b}}, @NLBL_UNLABEL_A_IPV6MASK={0x14, 0x3, @initdev={0xfe, 0x88, [], 0x0, 0x0}}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}, @NLBL_UNLABEL_A_ACPTFLG={0x5, 0x1, 0x1}]}, 0x6c}}, 0x0) sendmsg$NLBL_UNLABEL_C_STATICADDDEF(r1, &(0x7f00000001c0)={&(0x7f0000000040), 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x1c, r3, 0x800, 0x70bd2b, 0x25dfdbfd, {}, [@NLBL_UNLABEL_A_IPV4MASK={0x8, 0x5, @broadcast}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40010}, 0x80) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) 07:20:36 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) pause() ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f00000000c0)=ANY=[@ANYBLOB="c90e3976a412"], 0x1) 07:20:36 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) set_mempolicy(0x8000, &(0x7f0000000080)=0xffffffff, 0x10000) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) [ 1556.851506] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1556.872972] 8021q: adding VLAN 0 to HW filter on device bond4 07:20:36 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:36 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = dup3(0xffffffffffffffff, r3, 0x80000) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000080)={r4, 0x10, &(0x7f0000000040)={&(0x7f00000001c0)=""/4096, 0x1000, 0xffffffffffffffff}}, 0x10) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x401200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) [ 1556.902728] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1556.917979] bond0: Enslaving bond4 as an active interface with an up link [ 1556.940937] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1556.956079] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1556.968303] CPU: 0 PID: 26415 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1556.976219] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1556.985580] Call Trace: [ 1556.988182] dump_stack+0x13e/0x194 [ 1556.991843] warn_alloc.cold+0x96/0x1af [ 1556.995833] ? zone_watermark_ok_safe+0x280/0x280 [ 1557.000684] ? wait_for_completion+0x390/0x390 [ 1557.005266] __alloc_pages_slowpath+0x2114/0x26c0 [ 1557.010129] ? warn_alloc+0xf0/0xf0 [ 1557.014017] ? find_held_lock+0x2d/0x110 [ 1557.018088] ? fs_reclaim_acquire+0x10/0x10 [ 1557.022427] __alloc_pages_nodemask+0x5d3/0x700 [ 1557.027104] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1557.032115] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1557.036955] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1557.042060] alloc_pages_current+0xe7/0x1e0 [ 1557.046370] kvm_mmu_create+0xd1/0x1c0 [ 1557.050259] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1557.054565] ? alloc_pages_current+0xef/0x1e0 [ 1557.059308] kvm_vcpu_init+0x26d/0x360 [ 1557.063184] vmx_create_vcpu+0xf3/0x2900 [ 1557.067236] ? __mutex_unlock_slowpath+0x75/0x780 [ 1557.072065] ? futex_wake+0x11c/0x3d0 [ 1557.075854] ? handle_rdmsr+0x6b0/0x6b0 [ 1557.079823] kvm_vm_ioctl+0x49c/0x1430 [ 1557.083785] ? __lock_acquire+0x5f7/0x4620 [ 1557.088004] ? kvm_vcpu_release+0xa0/0xa0 [ 1557.092159] ? trace_hardirqs_on+0x10/0x10 [ 1557.096410] ? trace_hardirqs_on+0x10/0x10 [ 1557.100645] ? save_trace+0x290/0x290 [ 1557.104466] ? __might_fault+0x104/0x1b0 [ 1557.108535] ? kvm_vcpu_release+0xa0/0xa0 [ 1557.112862] do_vfs_ioctl+0x75a/0xfe0 [ 1557.116657] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1557.121400] ? ioctl_preallocate+0x1a0/0x1a0 [ 1557.125802] ? security_file_ioctl+0x76/0xb0 [ 1557.130193] ? security_file_ioctl+0x83/0xb0 [ 1557.134603] SyS_ioctl+0x7f/0xb0 [ 1557.137973] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1557.141948] do_syscall_64+0x1d5/0x640 [ 1557.145850] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1557.151034] RIP: 0033:0x45c849 [ 1557.154212] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1557.162353] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1557.169679] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1557.177072] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1557.184355] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1557.191612] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1557.228275] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1557.258391] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1557.264315] CPU: 0 PID: 26426 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1557.272210] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1557.281927] Call Trace: [ 1557.284524] dump_stack+0x13e/0x194 [ 1557.288172] warn_alloc.cold+0x96/0x1af [ 1557.292168] ? zone_watermark_ok_safe+0x280/0x280 [ 1557.297028] ? wait_for_completion+0x390/0x390 [ 1557.301802] __alloc_pages_slowpath+0x2114/0x26c0 [ 1557.306675] ? warn_alloc+0xf0/0xf0 [ 1557.310310] ? find_held_lock+0x2d/0x110 [ 1557.314381] ? fs_reclaim_acquire+0x10/0x10 [ 1557.318722] __alloc_pages_nodemask+0x5d3/0x700 [ 1557.323408] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1557.328432] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1557.333290] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1557.338319] alloc_pages_current+0xe7/0x1e0 [ 1557.342648] kvm_mmu_create+0xd1/0x1c0 [ 1557.346545] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1557.350876] ? alloc_pages_current+0xef/0x1e0 [ 1557.355475] kvm_vcpu_init+0x26d/0x360 [ 1557.359510] vmx_create_vcpu+0xf3/0x2900 [ 1557.363772] ? __mutex_unlock_slowpath+0x75/0x780 [ 1557.368635] ? futex_wake+0x11c/0x3d0 [ 1557.372450] ? handle_rdmsr+0x6b0/0x6b0 [ 1557.376443] kvm_vm_ioctl+0x49c/0x1430 [ 1557.380344] ? __lock_acquire+0x5f7/0x4620 [ 1557.384585] ? kvm_vcpu_release+0xa0/0xa0 [ 1557.388870] ? trace_hardirqs_on+0x10/0x10 [ 1557.393131] ? trace_hardirqs_on+0x10/0x10 [ 1557.397386] ? save_trace+0x290/0x290 [ 1557.401225] ? __might_fault+0x104/0x1b0 [ 1557.405305] ? kvm_vcpu_release+0xa0/0xa0 [ 1557.409462] do_vfs_ioctl+0x75a/0xfe0 [ 1557.413276] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1557.418068] ? ioctl_preallocate+0x1a0/0x1a0 [ 1557.422493] ? security_file_ioctl+0x76/0xb0 [ 1557.426910] ? security_file_ioctl+0x83/0xb0 [ 1557.431332] SyS_ioctl+0x7f/0xb0 [ 1557.434706] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1557.438692] do_syscall_64+0x1d5/0x640 [ 1557.442592] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1557.447783] RIP: 0033:0x45c849 [ 1557.450971] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1557.458688] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1557.465975] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1557.473249] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1557.480525] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1557.487806] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1557.522982] CPU: 0 PID: 26418 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1557.530901] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1557.540286] Call Trace: [ 1557.542889] dump_stack+0x13e/0x194 [ 1557.546613] warn_alloc.cold+0x96/0x1af [ 1557.550590] ? zone_watermark_ok_safe+0x280/0x280 [ 1557.555450] ? wait_for_completion+0x390/0x390 [ 1557.560045] __alloc_pages_slowpath+0x2114/0x26c0 [ 1557.564903] ? warn_alloc+0xf0/0xf0 [ 1557.568536] ? find_held_lock+0x2d/0x110 [ 1557.572613] ? fs_reclaim_acquire+0x10/0x10 [ 1557.576954] __alloc_pages_nodemask+0x5d3/0x700 [ 1557.581651] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1557.586676] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1557.591533] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1557.596566] alloc_pages_current+0xe7/0x1e0 [ 1557.600897] kvm_mmu_create+0xd1/0x1c0 [ 1557.604795] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1557.609121] ? alloc_pages_current+0xef/0x1e0 [ 1557.613634] kvm_vcpu_init+0x26d/0x360 [ 1557.617530] vmx_create_vcpu+0xf3/0x2900 [ 1557.618308] syz-executor.1: [ 1557.621595] ? __mutex_unlock_slowpath+0x75/0x780 [ 1557.621607] ? futex_wake+0x11c/0x3d0 [ 1557.621619] ? handle_rdmsr+0x6b0/0x6b0 [ 1557.621633] kvm_vm_ioctl+0x49c/0x1430 [ 1557.621645] ? __lock_acquire+0x5f7/0x4620 [ 1557.621654] ? kvm_vcpu_release+0xa0/0xa0 [ 1557.621663] ? trace_hardirqs_on+0x10/0x10 [ 1557.621677] ? trace_hardirqs_on+0x10/0x10 [ 1557.621688] ? save_trace+0x290/0x290 [ 1557.643940] page allocation failure: order:0 [ 1557.645396] ? __might_fault+0x104/0x1b0 [ 1557.645415] ? kvm_vcpu_release+0xa0/0xa0 [ 1557.645428] do_vfs_ioctl+0x75a/0xfe0 [ 1557.653168] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask= [ 1557.653808] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1557.669308] (null) [ 1557.670368] ? ioctl_preallocate+0x1a0/0x1a0 [ 1557.670388] ? security_file_ioctl+0x76/0xb0 [ 1557.670398] ? security_file_ioctl+0x83/0xb0 [ 1557.670410] SyS_ioctl+0x7f/0xb0 [ 1557.670418] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1557.670430] do_syscall_64+0x1d5/0x640 [ 1557.670445] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1557.670455] RIP: 0033:0x45c849 [ 1557.678024] syz-executor.1 cpuset= [ 1557.678384] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 [ 1557.697577] syz1 [ 1557.699943] ORIG_RAX: 0000000000000010 [ 1557.738724] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1557.745981] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1557.753247] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1557.760627] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1557.767889] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1557.810100] mems_allowed=0-1 [ 1557.813275] CPU: 1 PID: 26435 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1557.821160] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1557.830519] Call Trace: [ 1557.833120] dump_stack+0x13e/0x194 [ 1557.834743] warn_alloc_show_mem: 1 callbacks suppressed [ 1557.834746] Mem-Info: [ 1557.836757] warn_alloc.cold+0x96/0x1af [ 1557.836769] ? zone_watermark_ok_safe+0x280/0x280 [ 1557.836790] ? wait_for_completion+0x390/0x390 [ 1557.836805] __alloc_pages_slowpath+0x2114/0x26c0 [ 1557.836832] ? warn_alloc+0xf0/0xf0 [ 1557.845320] active_anon:797439 inactive_anon:200 isolated_anon:0 [ 1557.845320] active_file:7250 inactive_file:6534 isolated_file:0 [ 1557.845320] unevictable:0 dirty:19 writeback:25 unstable:0 [ 1557.845320] slab_reclaimable:12535 slab_unreclaimable:132206 [ 1557.845320] mapped:59117 shmem:547 pagetables:16582 bounce:0 [ 1557.845320] free:546524 free_pcp:420 free_cma:0 [ 1557.848669] ? find_held_lock+0x2d/0x110 [ 1557.848683] ? fs_reclaim_acquire+0x10/0x10 [ 1557.848705] __alloc_pages_nodemask+0x5d3/0x700 [ 1557.848720] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1557.848728] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1557.848736] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1557.848755] alloc_pages_current+0xe7/0x1e0 [ 1557.858458] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1557.863107] kvm_mmu_create+0xd1/0x1c0 [ 1557.863122] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1557.863134] ? alloc_pages_current+0xef/0x1e0 [ 1557.863147] kvm_vcpu_init+0x26d/0x360 [ 1557.863160] vmx_create_vcpu+0xf3/0x2900 [ 1557.863176] ? __mutex_unlock_slowpath+0x75/0x780 [ 1557.863185] ? futex_wake+0x11c/0x3d0 [ 1557.863195] ? handle_rdmsr+0x6b0/0x6b0 [ 1557.863208] kvm_vm_ioctl+0x49c/0x1430 [ 1557.863229] ? __lock_acquire+0x5f7/0x4620 [ 1557.867459] Node 1 active_anon:1218696kB inactive_anon:16kB active_file:28968kB inactive_file:26132kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27536kB dirty:72kB writeback:100kB shmem:984kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1557.901120] ? kvm_vcpu_release+0xa0/0xa0 [ 1557.901133] ? trace_hardirqs_on+0x10/0x10 [ 1557.901150] ? trace_hardirqs_on+0x10/0x10 [ 1557.901163] ? save_trace+0x290/0x290 [ 1557.901175] ? __might_fault+0x104/0x1b0 [ 1557.901190] ? kvm_vcpu_release+0xa0/0xa0 [ 1557.901203] do_vfs_ioctl+0x75a/0xfe0 [ 1557.901215] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1557.901230] ? ioctl_preallocate+0x1a0/0x1a0 [ 1557.901247] ? security_file_ioctl+0x76/0xb0 [ 1557.914855] Node 0 [ 1557.919278] ? security_file_ioctl+0x83/0xb0 [ 1557.919294] SyS_ioctl+0x7f/0xb0 [ 1557.919303] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1557.919318] do_syscall_64+0x1d5/0x640 [ 1557.919335] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1557.919344] RIP: 0033:0x45c849 [ 1557.924700] DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1557.929209] RSP: 002b:00007f4cd9a86c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1557.929225] RAX: ffffffffffffffda RBX: 00007f4cd9a876d4 RCX: 000000000045c849 [ 1557.929231] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1557.929236] RBP: 000000000076c040 R08: 0000000000000000 R09: 0000000000000000 07:20:38 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = fcntl$dupfd(r5, 0x0, r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) ioctl$BLKROSET(r6, 0x125d, &(0x7f0000000140)=0x4) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r4, 0xc08c5332, &(0x7f0000000080)={0x6, 0x8, 0x1, 'queue0\x00', 0x2}) [ 1557.929242] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1557.929248] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076c04c [ 1558.031115] bond0: Releasing backup interface bond4 [ 1558.138615] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1558.346939] Node 0 DMA32 free:32220kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13120kB pagetables:36860kB bounce:0kB free_pcp:792kB local_pcp:636kB free_cma:0kB [ 1558.355461] syz-executor.0: [ 1558.435981] lowmem_reserve[]: 0 0 0 0 0 [ 1558.440252] page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1558.448297] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1558.488822] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1558.503730] CPU: 1 PID: 26468 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1558.505698] lowmem_reserve[]: [ 1558.511732] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1558.511737] Call Trace: [ 1558.511758] dump_stack+0x13e/0x194 [ 1558.511774] warn_alloc.cold+0x96/0x1af [ 1558.511784] ? zone_watermark_ok_safe+0x280/0x280 [ 1558.511804] ? wait_for_completion+0x390/0x390 [ 1558.511816] __alloc_pages_slowpath+0x2114/0x26c0 [ 1558.511836] ? warn_alloc+0xf0/0xf0 [ 1558.511846] ? find_held_lock+0x2d/0x110 [ 1558.511855] ? fs_reclaim_acquire+0x10/0x10 [ 1558.511876] __alloc_pages_nodemask+0x5d3/0x700 [ 1558.511887] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1558.511895] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1558.511903] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1558.511922] alloc_pages_current+0xe7/0x1e0 [ 1558.511936] kvm_mmu_create+0xd1/0x1c0 [ 1558.511949] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1558.511957] ? alloc_pages_current+0xef/0x1e0 [ 1558.511969] kvm_vcpu_init+0x26d/0x360 [ 1558.511981] vmx_create_vcpu+0xf3/0x2900 [ 1558.511989] ? save_trace+0x290/0x290 [ 1558.512004] ? __mutex_unlock_slowpath+0x75/0x780 [ 1558.516778] 0 [ 1558.524509] ? trace_hardirqs_on+0x10/0x10 [ 1558.524522] ? handle_rdmsr+0x6b0/0x6b0 [ 1558.524539] kvm_vm_ioctl+0x49c/0x1430 [ 1558.524554] ? kvm_vcpu_release+0xa0/0xa0 [ 1558.524568] ? lock_downgrade+0x6e0/0x6e0 [ 1558.524579] ? _raw_spin_unlock_irq+0x24/0x80 [ 1558.524588] ? trace_hardirqs_on_caller+0x3f6/0x590 [ 1558.524596] ? _raw_spin_unlock_irq+0x5a/0x80 [ 1558.524659] ? finish_task_switch+0x178/0x620 [ 1558.524670] ? finish_task_switch+0x14d/0x620 [ 1558.529268] 0 [ 1558.530890] ? switch_mm_irqs_off+0x5db/0xec0 [ 1558.530907] ? __schedule+0x7c0/0x1ca0 [ 1558.530922] ? kvm_vcpu_release+0xa0/0xa0 [ 1558.530936] do_vfs_ioctl+0x75a/0xfe0 [ 1558.530949] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1558.530958] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1558.530969] ? ioctl_preallocate+0x1a0/0x1a0 [ 1558.535320] 0 [ 1558.539772] ? retint_kernel+0x2d/0x2d [ 1558.539790] ? security_file_ioctl+0x76/0xb0 [ 1558.539801] ? __fget_light+0x199/0x1f0 [ 1558.539810] ? security_file_ioctl+0x83/0xb0 [ 1558.539822] SyS_ioctl+0x7f/0xb0 [ 1558.539831] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1558.539843] do_syscall_64+0x1d5/0x640 [ 1558.545355] 0 [ 1558.549272] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1558.549282] RIP: 0033:0x45c849 [ 1558.549287] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1558.549297] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1558.549303] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1558.549308] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1558.549314] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1558.549319] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1558.785608] 0 [ 1558.787509] Node 1 Normal free:2146960kB min:53612kB low:67012kB high:80412kB active_anon:1218768kB inactive_anon:16kB active_file:28968kB inactive_file:26188kB unevictable:0kB writepending:48kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:13120kB pagetables:29312kB bounce:0kB free_pcp:748kB local_pcp:304kB free_cma:0kB [ 1558.822894] lowmem_reserve[]: 0 0 0 0 0 07:20:38 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, 0x0, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1558.836012] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1558.840858] 8021q: adding VLAN 0 to HW filter on device bond4 [ 1558.865343] Node 0 DMA32: 450*4kB (UMEH) 1258*8kB (UMEH) 773*16kB (UE) 225*32kB (UEH) 4*64kB (EH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 31688kB [ 1558.908831] bond0: Enslaving bond4 as an active interface with an up link [ 1558.927084] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB 07:20:39 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r3, r2) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r3, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000200)={&(0x7f0000000140)={0x94, 0x0, 0x8, 0x201, 0x0, 0x0, {0x3, 0x0, 0x9}, [@CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x88f8}, @CTA_TIMEOUT_DATA={0x44, 0x4, 0x0, 0x1, @icmp=[@CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x31a}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x8}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x1ff}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0xffffffff}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0xffffffff}, @CTA_TIMEOUT_ICMP_TIMEOUT={0x8, 0x1, 0x1, 0x0, 0x1}]}, @CTA_TIMEOUT_DATA={0x24, 0x4, 0x0, 0x1, @fccp=[@CTA_TIMEOUT_DCCP_PARTOPEN={0x8, 0x3, 0x1, 0x0, 0x1}, @CTA_TIMEOUT_DCCP_RESPOND={0x8, 0x2, 0x1, 0x0, 0x6}, @CTA_TIMEOUT_DCCP_RESPOND={0x8, 0x2, 0x1, 0x0, 0xfffffffb}, @CTA_TIMEOUT_DCCP_RESPOND={0x8, 0x2, 0x1, 0x0, 0xffff}]}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x884c}, @CTA_TIMEOUT_L3PROTO={0x6, 0x2, 0x1, 0x0, 0x6007}]}, 0x94}, 0x1, 0x0, 0x0, 0x20000000}, 0x4) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000080)=ANY=[@ANYBLOB="befe643d4dc978b816bcb3e3c6bc87fc0feb06798978914db3aa79b213c83505da9ff80f67a5e539808e3bb7e861e577c5bb7a25a0eaa507b68a2203a4af5d2396bc31fad900"/86], 0x1) [ 1558.952186] Node 1 Normal: 20*4kB (UE) 156*8kB (UME) 297*16kB (UME) 217*32kB (UME) 107*64kB (UME) 39*128kB (M) 37*256kB (UME) 17*512kB (UM) 11*1024kB (UME) 9*2048kB (UME) 506*4096kB (UM) = 2145312kB [ 1558.970187] bond0: Releasing backup interface bond4 07:20:39 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) acct(&(0x7f0000000040)='./file0\x00') [ 1559.096374] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1559.180168] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1559.239036] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1559.266122] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1559.285484] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1559.301156] 14350 total pagecache pages [ 1559.309647] 0 pages in swap cache [ 1559.318833] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1559.324690] Swap cache stats: add 0, delete 0, find 0/0 [ 1559.334497] CPU: 0 PID: 26493 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1559.342400] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1559.351843] Call Trace: [ 1559.354443] dump_stack+0x13e/0x194 [ 1559.358094] warn_alloc.cold+0x96/0x1af [ 1559.362081] ? zone_watermark_ok_safe+0x280/0x280 [ 1559.367120] ? wait_for_completion+0x390/0x390 [ 1559.371720] __alloc_pages_slowpath+0x2114/0x26c0 [ 1559.376591] ? warn_alloc+0xf0/0xf0 [ 1559.380218] ? find_held_lock+0x2d/0x110 [ 1559.384285] ? fs_reclaim_acquire+0x10/0x10 [ 1559.388617] __alloc_pages_nodemask+0x5d3/0x700 [ 1559.393291] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1559.398311] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1559.403507] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1559.408539] alloc_pages_current+0xe7/0x1e0 [ 1559.412871] kvm_mmu_create+0xd1/0x1c0 [ 1559.416765] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1559.421090] ? alloc_pages_current+0xef/0x1e0 [ 1559.425849] kvm_vcpu_init+0x26d/0x360 [ 1559.429743] vmx_create_vcpu+0xf3/0x2900 [ 1559.433813] ? __mutex_unlock_slowpath+0x75/0x780 [ 1559.438665] ? futex_wake+0x11c/0x3d0 [ 1559.442466] ? handle_rdmsr+0x6b0/0x6b0 [ 1559.446451] kvm_vm_ioctl+0x49c/0x1430 [ 1559.450344] ? __lock_acquire+0x5f7/0x4620 [ 1559.454580] ? kvm_vcpu_release+0xa0/0xa0 [ 1559.458728] ? trace_hardirqs_on+0x10/0x10 [ 1559.463408] ? trace_hardirqs_on+0x10/0x10 [ 1559.467655] ? save_trace+0x290/0x290 [ 1559.471459] ? __might_fault+0x104/0x1b0 [ 1559.475530] ? kvm_vcpu_release+0xa0/0xa0 [ 1559.479684] do_vfs_ioctl+0x75a/0xfe0 [ 1559.483491] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1559.488251] ? ioctl_preallocate+0x1a0/0x1a0 [ 1559.492680] ? security_file_ioctl+0x76/0xb0 [ 1559.497096] ? security_file_ioctl+0x83/0xb0 [ 1559.501514] SyS_ioctl+0x7f/0xb0 [ 1559.504886] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1559.509043] do_syscall_64+0x1d5/0x640 [ 1559.512946] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1559.518145] RIP: 0033:0x45c849 [ 1559.521335] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1559.529048] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1559.536373] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1559.543643] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1559.550919] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1559.558195] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1559.575900] Free swap = 0kB [ 1559.579012] Total swap = 0kB [ 1559.582772] 1965979 pages RAM [ 1559.586080] 0 pages HighMem/MovableOnly 07:20:39 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, 0x0, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:39 executing program 3: r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket(0x10, 0x803, 0x0) sendmsg$NBD_CMD_DISCONNECT(r1, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x0) getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c00000010000d0700000000ff03000000000010", @ANYRES32=r2, @ANYBLOB="00000000e60000001c0012000c000100626f6e64000000000c0002000800010006000000"], 0x3c}}, 0x0) r3 = socket$netlink(0x10, 0x3, 0x0) r4 = socket$packet(0x11, 0x3, 0x300) getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)) sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)=ANY=[@ANYBLOB="280000001000250800000000000000000a000000", @ANYRES32=r5, @ANYBLOB="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"/286], 0x28}}, 0x0) r6 = socket$netlink(0x10, 0x3, 0x0) r7 = socket(0x10, 0x2, 0x8) sendmsg$NBD_CMD_DISCONNECT(r7, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0}}, 0x0) getsockname$packet(r7, &(0x7f0000000100)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14) sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0xfffffff0, &(0x7f0000000280)={&(0x7f00000000c0)=@newlink={0x28, 0x10, 0x825, 0x0, 0x0, {0x0, 0x0, 0x0, r8}, [@IFLA_PROTO_DOWN={0x8, 0xa}]}, 0x28}}, 0x0) 07:20:39 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$vsock(0xffffffffffffff9c, &(0x7f0000000080)='/dev/vsock\x00', 0x600180, 0x0) r3 = socket$nl_generic(0x10, 0x3, 0x10) r4 = openat$dlm_plock(0xffffffffffffff9c, &(0x7f00000002c0)='/dev/dlm_plock\x00', 0x440, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r4, 0x4010ae67, &(0x7f0000000300)={0x3000, 0x11000}) r5 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000080)='IPVS\x00') sendmsg$IPVS_CMD_NEW_DAEMON(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="0112000000009ac70000090000003c00030014000600ff090000002e000000000000000000010800030000000000140002007663616e3000000000600000000000000800010002000000"], 0x50}}, 0x0) sendmsg$IPVS_CMD_DEL_DEST(r2, &(0x7f0000000240)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x20}, 0xc, &(0x7f0000000200)={&(0x7f0000000100)={0xc0, r5, 0x4, 0x70bd29, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_TIMEOUT_TCP_FIN={0x8, 0x5, 0x1}, @IPVS_CMD_ATTR_DEST={0x5c, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_TUN_TYPE={0x5}, @IPVS_DEST_ATTR_FWD_METHOD={0x8, 0x3, 0x1}, @IPVS_DEST_ATTR_ADDR_FAMILY={0x6, 0xb, 0x2}, @IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x2}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@remote}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv6=@remote}, @IPVS_DEST_ATTR_TUN_TYPE={0x5, 0xd, 0x1}, @IPVS_DEST_ATTR_INACT_CONNS={0x8, 0x8, 0x7}]}, @IPVS_CMD_ATTR_DEST={0x28, 0x2, 0x0, 0x1, [@IPVS_DEST_ATTR_WEIGHT={0x8, 0x4, 0x3e2b}, @IPVS_DEST_ATTR_ADDR={0x14, 0x1, @ipv4=@broadcast}, @IPVS_DEST_ATTR_ACTIVE_CONNS={0x8}]}, @IPVS_CMD_ATTR_SERVICE={0x1c, 0x1, 0x0, 0x1, [@IPVS_SVC_ATTR_TIMEOUT={0x8}, @IPVS_SVC_ATTR_NETMASK={0x8, 0x9, 0x1d}, @IPVS_SVC_ATTR_PROTOCOL={0x6, 0x2, 0x21}]}, @IPVS_CMD_ATTR_SERVICE={0x4}]}, 0xc0}, 0x1, 0x0, 0x0, 0x40000}, 0x40000) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r6, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r6, 0xae80, 0x0) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) r8 = fcntl$dupfd(r7, 0x0, r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) ioctl$SIOCX25CALLACCPTAPPRV(r8, 0x89e8) ioctl$KVM_TPR_ACCESS_REPORTING(r6, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:20:39 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) setsockopt$netlink_NETLINK_RX_RING(r3, 0x10e, 0x6, &(0x7f0000000040)={0x81900000, 0x6, 0x1, 0x1}, 0x10) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) 07:20:39 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) flistxattr(r1, &(0x7f0000000080)=""/26, 0x1a) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) [ 1559.594323] 339049 pages reserved [ 1559.598713] 0 pages cma reserved [ 1559.616462] warn_alloc_show_mem: 4 callbacks suppressed [ 1559.616466] Mem-Info: [ 1559.649728] active_anon:797295 inactive_anon:200 isolated_anon:0 [ 1559.649728] active_file:7251 inactive_file:6553 isolated_file:0 [ 1559.649728] unevictable:0 dirty:27 writeback:0 unstable:0 [ 1559.649728] slab_reclaimable:12576 slab_unreclaimable:131833 [ 1559.649728] mapped:59119 shmem:547 pagetables:16514 bounce:0 [ 1559.649728] free:547104 free_pcp:445 free_cma:0 07:20:39 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, 0x0, 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1559.740877] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:36kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1559.910265] Node 1 active_anon:1218720kB inactive_anon:16kB active_file:28968kB inactive_file:26212kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27444kB dirty:104kB writeback:0kB shmem:984kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1559.950818] IPVS: Error joining to the multicast group [ 1559.966242] 8021q: adding VLAN 0 to HW filter on device bond5 [ 1559.991656] bond0: Enslaving bond5 as an active interface with an up link [ 1560.006233] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1560.028256] bond0: Releasing backup interface bond5 [ 1560.040900] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1560.051211] CPU: 0 PID: 26521 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1560.059124] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1560.069180] Call Trace: [ 1560.071779] dump_stack+0x13e/0x194 [ 1560.075507] warn_alloc.cold+0x96/0x1af [ 1560.079502] ? zone_watermark_ok_safe+0x280/0x280 [ 1560.084365] ? wait_for_completion+0x390/0x390 [ 1560.088969] __alloc_pages_slowpath+0x2114/0x26c0 [ 1560.093839] ? warn_alloc+0xf0/0xf0 [ 1560.097476] ? find_held_lock+0x2d/0x110 [ 1560.101576] ? fs_reclaim_acquire+0x10/0x10 [ 1560.105921] __alloc_pages_nodemask+0x5d3/0x700 [ 1560.111043] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1560.116070] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1560.120925] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1560.125963] alloc_pages_current+0xe7/0x1e0 [ 1560.130300] kvm_mmu_create+0xd1/0x1c0 [ 1560.134201] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1560.138535] ? alloc_pages_current+0xef/0x1e0 [ 1560.143056] kvm_vcpu_init+0x26d/0x360 [ 1560.146957] vmx_create_vcpu+0xf3/0x2900 [ 1560.151031] ? __mutex_unlock_slowpath+0x75/0x780 [ 1560.155968] ? futex_wake+0x11c/0x3d0 [ 1560.159775] ? handle_rdmsr+0x6b0/0x6b0 [ 1560.163764] kvm_vm_ioctl+0x49c/0x1430 [ 1560.167665] ? __lock_acquire+0x5f7/0x4620 [ 1560.171911] ? kvm_vcpu_release+0xa0/0xa0 [ 1560.176190] ? trace_hardirqs_on+0x10/0x10 [ 1560.180442] ? trace_hardirqs_on+0x10/0x10 [ 1560.184691] ? save_trace+0x290/0x290 [ 1560.188500] ? __might_fault+0x104/0x1b0 [ 1560.192574] ? kvm_vcpu_release+0xa0/0xa0 [ 1560.196732] do_vfs_ioctl+0x75a/0xfe0 [ 1560.200541] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1560.205306] ? ioctl_preallocate+0x1a0/0x1a0 [ 1560.209730] ? security_file_ioctl+0x76/0xb0 [ 1560.214144] ? security_file_ioctl+0x83/0xb0 [ 1560.218559] SyS_ioctl+0x7f/0xb0 [ 1560.221928] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1560.225911] do_syscall_64+0x1d5/0x640 [ 1560.229915] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1560.235114] RIP: 0033:0x45c849 [ 1560.238309] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1560.246024] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1560.253294] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1560.265780] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1560.273059] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1560.280340] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c 07:20:40 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380), 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1560.301265] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 07:20:40 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r3, 0x0, r3) ioctl$sock_SIOCGIFVLAN_SET_VLAN_NAME_TYPE_CMD(r3, 0x8982, &(0x7f0000000080)={0x6, 'veth1_to_bridge\x00', {0x401}, 0x1}) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:20:40 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) dup(r0) setrlimit(0x3, &(0x7f0000000040)={0xfffffffffffffffd, 0x3ff}) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) socket$inet6_tcp(0xa, 0x1, 0x0) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r3, 0x0, r3) r4 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/self\x00', 0x800, 0x0) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = fcntl$dupfd(r4, 0x406, r5) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0xb) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x103) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) r8 = fcntl$dupfd(r7, 0x0, r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) clock_gettime(0x0, &(0x7f0000000080)={0x0, 0x0}) setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT(r8, 0x28, 0x6, &(0x7f0000000100)={r9, r10/1000+30000}, 0x10) 07:20:40 executing program 3: r0 = socket$inet_tcp(0x2, 0x1, 0x0) setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f0000000040)=0x100000001, 0x4) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='bbr\x00', 0x4) connect$inet(r0, &(0x7f0000000180)={0x2, 0x0, @local}, 0x10) setsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000080)={0x0, 0x3, 0x32fe3cf0}, 0x14) shutdown(r0, 0x1) [ 1560.496790] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1560.534060] Node 0 DMA32 free:32224kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13120kB pagetables:36860kB bounce:0kB free_pcp:828kB local_pcp:656kB free_cma:0kB [ 1560.689181] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1560.705478] lowmem_reserve[]: 0 0 0 0 0 [ 1560.709626] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1560.740666] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1560.746210] CPU: 0 PID: 26554 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1560.754098] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1560.763489] Call Trace: [ 1560.766088] dump_stack+0x13e/0x194 [ 1560.769724] warn_alloc.cold+0x96/0x1af [ 1560.773703] ? zone_watermark_ok_safe+0x280/0x280 [ 1560.778565] ? wait_for_completion+0x390/0x390 [ 1560.783160] __alloc_pages_slowpath+0x2114/0x26c0 [ 1560.788026] ? warn_alloc+0xf0/0xf0 [ 1560.791657] ? find_held_lock+0x2d/0x110 [ 1560.795811] ? fs_reclaim_acquire+0x10/0x10 [ 1560.800184] __alloc_pages_nodemask+0x5d3/0x700 [ 1560.804864] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1560.809883] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1560.814732] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1560.819765] alloc_pages_current+0xe7/0x1e0 [ 1560.824115] kvm_mmu_create+0xd1/0x1c0 [ 1560.828013] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1560.832339] ? alloc_pages_current+0xef/0x1e0 [ 1560.836844] kvm_vcpu_init+0x26d/0x360 [ 1560.840739] vmx_create_vcpu+0xf3/0x2900 [ 1560.844809] ? __mutex_unlock_slowpath+0x75/0x780 [ 1560.849657] ? futex_wake+0x11c/0x3d0 [ 1560.853474] ? handle_rdmsr+0x6b0/0x6b0 [ 1560.857463] kvm_vm_ioctl+0x49c/0x1430 [ 1560.861395] ? __lock_acquire+0x5f7/0x4620 [ 1560.865646] ? kvm_vcpu_release+0xa0/0xa0 [ 1560.869802] ? trace_hardirqs_on+0x10/0x10 [ 1560.874050] ? trace_hardirqs_on+0x10/0x10 [ 1560.878295] ? save_trace+0x290/0x290 [ 1560.882105] ? __might_fault+0x104/0x1b0 [ 1560.886181] ? kvm_vcpu_release+0xa0/0xa0 [ 1560.890392] do_vfs_ioctl+0x75a/0xfe0 [ 1560.894205] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1560.898977] ? ioctl_preallocate+0x1a0/0x1a0 [ 1560.903406] ? security_file_ioctl+0x76/0xb0 [ 1560.907824] ? security_file_ioctl+0x83/0xb0 [ 1560.912242] SyS_ioctl+0x7f/0xb0 [ 1560.915614] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1560.919595] do_syscall_64+0x1d5/0x640 [ 1560.923499] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1560.928691] RIP: 0033:0x45c849 [ 1560.931883] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1560.939594] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1560.946953] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1560.954232] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1560.961518] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1560.968794] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1560.985339] lowmem_reserve[]: 0 0 0 0 0 [ 1560.995058] Node 1 Normal free:2145504kB min:53612kB low:67012kB high:80412kB active_anon:1218308kB inactive_anon:16kB active_file:28968kB inactive_file:26236kB unevictable:0kB writepending:36kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12832kB pagetables:29116kB bounce:0kB free_pcp:1232kB local_pcp:548kB free_cma:0kB [ 1561.030543] lowmem_reserve[]: 0 0 0 0 0 [ 1561.034771] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1561.063381] Node 0 DMA32: 520*4kB (UMEH) 1291*8kB (UME) 774*16kB (UE) 226*32kB (UEH) 5*64kB (UEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 32344kB [ 1561.082694] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1561.107204] Node 1 Normal: 148*4kB (UM) 397*8kB (UME) 229*16kB (UME) 237*32kB (UME) 107*64kB (UME) 43*128kB (UM) 32*256kB (UME) 17*512kB (UM) 11*1024kB (UME) 9*2048kB (UME) 506*4096kB (UM) = 2146536kB [ 1561.129823] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1561.139135] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1561.158134] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1561.176532] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1561.186695] 14364 total pagecache pages [ 1561.193858] 0 pages in swap cache [ 1561.197433] Mem-Info: [ 1561.202983] Swap cache stats: add 0, delete 0, find 0/0 [ 1561.213431] active_anon:797314 inactive_anon:200 isolated_anon:0 [ 1561.213431] active_file:7251 inactive_file:6567 isolated_file:0 [ 1561.213431] unevictable:0 dirty:21 writeback:0 unstable:0 [ 1561.213431] slab_reclaimable:12645 slab_unreclaimable:131936 [ 1561.213431] mapped:59086 shmem:547 pagetables:16452 bounce:0 [ 1561.213431] free:546975 free_pcp:516 free_cma:0 [ 1561.262051] Free swap = 0kB [ 1561.273758] Total swap = 0kB [ 1561.279298] 1965979 pages RAM [ 1561.284842] 0 pages HighMem/MovableOnly [ 1561.288895] 339049 pages reserved [ 1561.298147] 0 pages cma reserved 07:20:41 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = syz_open_pts(0xffffffffffffffff, 0x45) pwritev(r2, &(0x7f0000000180)=[{&(0x7f0000000980)="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", 0x1000}, {&(0x7f0000000080)="bab97437ba835137b5e2e38cac61422e4835271388750146d0b83a3c6eca7ce103644cba679794aae4539fb7ee8af593e173fc7185f163bd9fb13ba1db31166dcb796d9f2670b71b61eb410970b29faf98e17da5af06c28098d0232b41832d68d63089fc3e4e13485d336dcbe2dd82c46a4b86e6f8fa3c3d8ae36d138fbfe6df7d9af5dc3e2bf4c0ea1fd55225c6379beb9662158e3170d77125f5d61defe7e6b0b2ee3f07f904e19a48eb652b06b56214", 0xb1}, {&(0x7f0000000140)}], 0x3, 0xe) r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r3, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r4, r3) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:20:41 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380), 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:41 executing program 3: perf_event_open(&(0x7f000001d000)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) socket$tipc(0x1e, 0x0, 0x0) r0 = socket$kcm(0x10, 0x2, 0x10) r1 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0)='TIPC\x00') sendmsg$TIPC_CMD_SET_LINK_PRI(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001480)=ANY=[@ANYBLOB='h\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="95c400000000000000000100260e0000000009410000004c00180000011462726f6164636173742d6c696e6b0000000000000000000000000000000000000000000000cc0800000000000000000000000000000000000000000000000000000000006f0da22f6e0801b6cb8612e361ec79108464cf82c43ed10d790a3e9a560265bfa881bb9ae3914f9e220b3cdc9281ef2a6bef33924f6c49a62c93c885e1adaba403d6ee9b0961e8000000"], 0x68}}, 0x0) 07:20:41 executing program 2: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$BLKREPORTZONE(r2, 0xc0101282, &(0x7f00000001c0)=ANY=[@ANYBLOB="060000000000000001000000000000000500000002000000fbffffffffffffff4c5bb7f6cf3d75000200000000ff0f0000000000000405409f00"/80]) r3 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$KVM_GET_REG_LIST(r3, 0xc008aeb0, &(0x7f0000000100)=ANY=[@ANYBLOB="f3ffffff5b100000"]) r4 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r5 = dup(r4) ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r5, 0xc01864b0, &(0x7f0000000040)={0x1, 0x7, 0x1332f7aa4b42b2b3, 0x20, 0x1ff}) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) r7 = fcntl$dupfd(r6, 0x0, r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r7, 0x4040534e, &(0x7f0000000080)={0x80, @tick=0x510b, 0x7f, {0x6, 0xb3}, 0x2}) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) [ 1561.349715] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:36kB inactive_file:0kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes 07:20:41 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380), 0x0, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:41 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000040)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x3, &(0x7f0000000280)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}, {&(0x7f0000000180)="2d646fe9ee1fc702000000fdc25c95bf6840f31267ef053ec467030522779c4876f9ee7fec013b43e7cdc6f2f6d842536a5479c1378bf5a8109451d00844d588cc8149a5f2bd2a1d6f1966a9d1858c2a76f39d6f392784bd7300c3093fb5735724b6f4a3469d040968c38ec8475f6443445c38d0ad029813d4b1d951712996df0382da07c338138adbd4c1db7715c8e2745f470beaedf02f4c38c538ac4ed8e98089466e1fdccb52791ea21b17a9134e8ce9c6a6135a5d0f537af5921c264d137e3a28fe50d4230ebbcc93ee9371e7ba646880fbcca5", 0xd6, 0x98ec}], 0x0, 0x0) [ 1561.458289] [ 1561.466277] ============================= [ 1561.494756] WARNING: suspicious RCU usage [ 1561.530356] 4.14.174-syzkaller #0 Not tainted [ 1561.535022] ----------------------------- [ 1561.539227] net/tipc/bearer.c:177 suspicious rcu_dereference_protected() usage! [ 1561.587477] [ 1561.587477] other info that might help us debug this: [ 1561.587477] [ 1561.597206] Node 1 active_anon:1218396kB inactive_anon:16kB active_file:28968kB inactive_file:26268kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27512kB dirty:0kB writeback:0kB shmem:984kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1561.624939] [ 1561.624939] rcu_scheduler_active = 2, debug_locks = 1 [ 1561.647064] 2 locks held by syz-executor.3/26590: [ 1561.679153] #0: (cb_lock){++++}, at: [] genl_rcv+0x15/0x40 [ 1561.721686] #1: (genl_mutex){+.+.}, at: [] genl_rcv_msg+0x112/0x140 [ 1561.756739] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1561.787991] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1561.800431] [ 1561.800431] stack backtrace: [ 1561.823314] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1561.829079] CPU: 0 PID: 26591 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1561.836966] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1561.846866] Call Trace: [ 1561.849467] dump_stack+0x13e/0x194 [ 1561.853104] warn_alloc.cold+0x96/0x1af [ 1561.857078] ? zone_watermark_ok_safe+0x280/0x280 [ 1561.861932] ? wait_for_completion+0x390/0x390 [ 1561.866533] __alloc_pages_slowpath+0x2114/0x26c0 [ 1561.871391] ? warn_alloc+0xf0/0xf0 [ 1561.875017] ? find_held_lock+0x2d/0x110 [ 1561.879079] ? fs_reclaim_acquire+0x10/0x10 [ 1561.883415] __alloc_pages_nodemask+0x5d3/0x700 [ 1561.888085] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1561.893104] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1561.898386] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1561.903413] alloc_pages_current+0xe7/0x1e0 [ 1561.907736] kvm_mmu_create+0xd1/0x1c0 [ 1561.911623] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1561.915963] ? alloc_pages_current+0xef/0x1e0 [ 1561.920456] kvm_vcpu_init+0x26d/0x360 [ 1561.924344] vmx_create_vcpu+0xf3/0x2900 [ 1561.928404] ? __mutex_unlock_slowpath+0x75/0x780 [ 1561.933244] ? futex_wake+0x11c/0x3d0 [ 1561.937047] ? handle_rdmsr+0x6b0/0x6b0 [ 1561.941021] kvm_vm_ioctl+0x49c/0x1430 [ 1561.944911] ? __lock_acquire+0x5f7/0x4620 [ 1561.949152] ? kvm_vcpu_release+0xa0/0xa0 [ 1561.953310] ? trace_hardirqs_on+0x10/0x10 [ 1561.957566] ? trace_hardirqs_on+0x10/0x10 [ 1561.961816] ? save_trace+0x290/0x290 [ 1561.965630] ? __might_fault+0x104/0x1b0 [ 1561.970052] ? kvm_vcpu_release+0xa0/0xa0 [ 1561.974202] do_vfs_ioctl+0x75a/0xfe0 [ 1561.978008] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1561.982768] ? ioctl_preallocate+0x1a0/0x1a0 [ 1561.987189] ? security_file_ioctl+0x76/0xb0 [ 1561.991594] ? security_file_ioctl+0x83/0xb0 [ 1561.996020] SyS_ioctl+0x7f/0xb0 [ 1561.999389] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1562.003383] do_syscall_64+0x1d5/0x640 [ 1562.007286] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1562.012489] RIP: 0033:0x45c849 [ 1562.015692] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1562.023416] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1562.030802] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1562.038082] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1562.045361] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1562.052628] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1562.064498] CPU: 1 PID: 26590 Comm: syz-executor.3 Not tainted 4.14.174-syzkaller #0 [ 1562.072843] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1562.075091] lowmem_reserve[]: [ 1562.082196] Call Trace: [ 1562.082216] dump_stack+0x13e/0x194 [ 1562.082323] tipc_bearer_find+0x1ff/0x2f0 [ 1562.082337] tipc_nl_compat_link_set+0x41f/0xbc0 [ 1562.092498] 0 [ 1562.095807] tipc_nl_compat_doit+0x18d/0x510 [ 1562.095823] ? tipc_nl_compat_link_stat_dump+0x1c40/0x1c40 [ 1562.095833] ? cap_capable+0x1c4/0x230 [ 1562.095844] ? security_capable+0x88/0xb0 [ 1562.095870] ? ns_capable_common+0x127/0x150 [ 1562.100973] 2557 [ 1562.102431] tipc_nl_compat_recv+0x95c/0xa10 [ 1562.102443] ? trace_hardirqs_on_caller+0x3f6/0x590 [ 1562.102455] ? tipc_nl_compat_doit+0x510/0x510 [ 1562.102465] ? tipc_nl_node_dump+0xc60/0xc60 [ 1562.102478] ? tipc_nl_compat_bearer_enable+0x560/0x560 [ 1562.107141] 2557 [ 1562.112478] ? retint_kernel+0x2d/0x2d [ 1562.112502] genl_family_rcv_msg+0x57c/0xb30 [ 1562.112516] ? mark_lock+0x475/0x10b0 [ 1562.112525] ? genl_unregister_family+0x640/0x640 [ 1562.112534] ? mutex_trylock+0x1a0/0x1a0 [ 1562.112545] ? check_preemption_disabled+0x35/0x240 [ 1562.112554] ? retint_kernel+0x2d/0x2d [ 1562.117231] 2557 [ 1562.120608] genl_rcv_msg+0xaf/0x140 [ 1562.120623] netlink_rcv_skb+0x127/0x370 [ 1562.120635] ? genl_family_rcv_msg+0xb30/0xb30 [ 1562.120644] ? netlink_ack+0x980/0x980 [ 1562.120654] ? lock_acquire+0x170/0x3f0 [ 1562.120669] genl_rcv+0x24/0x40 [ 1562.120679] netlink_unicast+0x437/0x620 [ 1562.125516] 2557 [ 1562.127150] ? netlink_attachskb+0x600/0x600 [ 1562.127166] netlink_sendmsg+0x733/0xbe0 [ 1562.127180] ? netlink_unicast+0x620/0x620 [ 1562.127197] ? security_socket_sendmsg+0x83/0xb0 [ 1562.127207] ? netlink_unicast+0x620/0x620 [ 1562.136633] sock_sendmsg+0xc5/0x100 [ 1562.136644] ___sys_sendmsg+0x70a/0x840 [ 1562.136656] ? trace_hardirqs_on+0x10/0x10 [ 1562.136668] ? copy_msghdr_from_user+0x380/0x380 [ 1562.136681] ? mark_held_locks+0xa6/0xf0 [ 1562.136694] ? retint_kernel+0x2d/0x2d [ 1562.141643] Node 0 [ 1562.145659] ? trace_hardirqs_on_caller+0x3f6/0x590 [ 1562.145672] ? trace_hardirqs_on_thunk+0x1a/0x1c [ 1562.145686] ? check_preemption_disabled+0x35/0x240 [ 1562.145697] ? retint_kernel+0x2d/0x2d [ 1562.145716] ? sockfd_lookup_light+0xb2/0x160 [ 1562.151786] DMA32 free:32344kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:36kB inactive_file:0kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13120kB pagetables:36860kB bounce:0kB free_pcp:996kB local_pcp:680kB free_cma:0kB [ 1562.153111] ? __sanitizer_cov_trace_pc+0x46/0x50 [ 1562.153125] ? sockfd_lookup_light+0xb2/0x160 [ 1562.153137] __sys_sendmsg+0xa3/0x120 [ 1562.153147] ? SyS_shutdown+0x160/0x160 [ 1562.153166] ? SyS_clock_gettime+0xf5/0x180 [ 1562.157373] lowmem_reserve[]: [ 1562.161432] ? SyS_clock_settime+0x1a0/0x1a0 [ 1562.161445] SyS_sendmsg+0x27/0x40 [ 1562.161454] ? __sys_sendmsg+0x120/0x120 [ 1562.161465] do_syscall_64+0x1d5/0x640 [ 1562.161481] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1562.161489] RIP: 0033:0x45c849 [ 1562.161493] RSP: 002b:00007f49a5ecac78 EFLAGS: 00000246 ORIG_RAX: 000000000000002e [ 1562.161503] RAX: ffffffffffffffda RBX: 00007f49a5ecb6d4 RCX: 000000000045c849 [ 1562.161510] RDX: 0000000000000000 RSI: 0000000020000200 RDI: 0000000000000004 [ 1562.166214] 0 [ 1562.170295] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1562.170300] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1562.170306] R13: 00000000000009cd R14: 00000000004cc7d7 R15: 000000000076bf0c [ 1562.437354] 0 0 0 0 [ 1562.448603] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1562.496554] lowmem_reserve[]: 0 0 0 0 0 [ 1562.500898] Node 1 Normal free:2143380kB min:53612kB low:67012kB high:80412kB active_anon:1218328kB inactive_anon:16kB active_file:28968kB inactive_file:26292kB unevictable:0kB writepending:192kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12800kB pagetables:29104kB bounce:0kB free_pcp:996kB local_pcp:568kB free_cma:0kB [ 1562.537476] lowmem_reserve[]: 0 0 0 0 0 [ 1562.556292] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1562.578001] Node 0 DMA32: 520*4kB (UMEH) 1289*8kB (UME) 775*16kB (UEH) 225*32kB (UEH) 5*64kB (UEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 32312kB [ 1562.599231] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1562.614209] Node 1 Normal: 141*4kB (UME) 89*8kB (UME) 193*16kB (UME) 247*32kB (UME) 107*64kB (UME) 39*128kB (M) 31*256kB (UME) 17*512kB (UM) 11*1024kB (UME) 9*2048kB (UME) 506*4096kB (UM) = 2143020kB [ 1562.637042] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1562.646147] warn_alloc_show_mem: 1 callbacks suppressed [ 1562.646150] Mem-Info: [ 1562.659305] active_anon:797322 inactive_anon:200 isolated_anon:0 [ 1562.659305] active_file:7250 inactive_file:6574 isolated_file:0 [ 1562.659305] unevictable:0 dirty:49 writeback:0 unstable:0 [ 1562.659305] slab_reclaimable:12649 slab_unreclaimable:132580 [ 1562.659305] mapped:59086 shmem:547 pagetables:16455 bounce:0 [ 1562.659305] free:546374 free_pcp:570 free_cma:0 [ 1562.698840] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1562.709829] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1562.730966] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1562.746504] 14374 total pagecache pages [ 1562.751020] 0 pages in swap cache [ 1562.755804] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1562.790452] Swap cache stats: add 0, delete 0, find 0/0 [ 1562.806694] Free swap = 0kB [ 1562.813246] Total swap = 0kB [ 1562.819781] 1965979 pages RAM [ 1562.831203] 0 pages HighMem/MovableOnly [ 1562.839866] 339049 pages reserved [ 1562.852457] 0 pages cma reserved [ 1562.858195] Node 1 active_anon:1218328kB inactive_anon:16kB active_file:28968kB inactive_file:26292kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27612kB dirty:192kB writeback:0kB shmem:984kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no 07:20:42 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) r4 = socket$inet6_tcp(0xa, 0x1, 0x0) r5 = fcntl$dupfd(r4, 0x0, r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) dup2(r3, r5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r7, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000080)=ANY=[@ANYBLOB="0c2477a69ad273083945"], 0x1) 07:20:42 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_dev$media(&(0x7f0000001340)='/dev/media#\x00', 0x8, 0x200) ioctl$VIDIOC_G_EXT_CTRLS(r2, 0xc0205647, &(0x7f0000001400)={0xa20000, 0x0, 0x2, r0, 0x0, &(0x7f00000013c0)={0x9909dd, 0x2, [], @p_u8=&(0x7f0000001380)=0x9}}) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$BLKROSET(r4, 0x125d, &(0x7f0000001300)=0x2) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x4, &(0x7f0000001280)=[{&(0x7f0000000000)="a9e860d1deb26583e181a9590642d4c61c6b493e1a2f77296233d4d4c067ccd2af1b8deb1928cf170e66b99a6fa1d7c72634aa98c81a0a5e5cdc431e67c20dc62cf254325653786218a3522b3025b0cb42dd54af64fd4491afa19202dfd284839b4b433f1152df9cc49642f72ec6f8d0ba439ec48751d3b2bd4a6ce6b3dc1a1af6020378d5911a7b9cbd552299bfeb38f5797ee41bab8aef4f16a6d9f937fb6596989194b6aadf592b9273246bb549ee4c0e4435d97248c0bdf53ec30b86f7b9e90cba4f54646e8740031c2185855d47", 0xd0, 0x80}, {&(0x7f00000001c0)="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", 0x1000, 0x65}, {&(0x7f00000011c0)="87819d50f25c92925288f0896181d4b88e7d285365651558da6f65139205b7b3250637070b30c1b47c3b98c645a970fdfe04f697dd34be2d48ad7a4ab1730a1fef56bf26bf55fb1603c80f817ab2237f70ff734716a1ab79c106a92256c51ae849fcc78f3f565c5a5e04db74d1b86e3eb5b915de5ac099387adb113199fd3143d5857103f7cd1d8dcf0f1a7854276c5c5d0add70250b3f7362a2411e15a0e542db", 0xa1, 0x9}, {&(0x7f0000000100)="1549ec52917d3df90c60e4d518ee5bd6bc4a", 0x12, 0xff}], 0x0, 0x0) 07:20:42 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = fcntl$dupfd(r5, 0x0, r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) r7 = fcntl$dupfd(0xffffffffffffffff, 0x406, r2) ioctl$KVM_SET_LAPIC(r7, 0x4400ae8f, &(0x7f0000000080)={"6cdd4237dd245c8404721efdc9c8dc1964125fa96fa42b75fb3488fd8015bba4c86cbdc93a40c8a4d4412a763b00040000000000003c5ca206c047ecee377aba09e7b88378e3d63a98fc191f361d264ffa8b46485f02baee1ab6b8154252066178868d1ef4b5365c5dc26ca097ddda7c21a984c2b9ca4bbb7a87165c0c1dbc75d7ea4df10000174a3ac8694525952f44500a1f0db509c32cc7ace842c28f37f06e4ea9f1e5f0c6c379f9cc58bf69fcde318ead4825aa1b6a832d4e48cc41bb5a6baa41d614f6c8941bee805954a62d196a4e8d41f6b21224b57f530d0000c1ff53bf79a1f5c5dc34b2262d66ae793b6304a30b97077f1c131045cbc11c4562d22db88d0edc5daee171cc9ec2db07478f347edbd6403c23ad4a5672b1b285c7988c4ec0922c655ff600000000c00dc290d936d93236051fadfb4b95d02c0bda7ce38dabb7cd103fe4d0c9c963cd717a77f8df8d46099b1f58e068af6aebbc19db161c6df3e7c9c71bc08a282fc2c142856b5e4caff4c0a4f72445ef10dcd2c569319d6e9bb2058d023f669a64fc7d9684b45b00000000364673dcfa9235ea5a2ff23c4bb5c5acb290e8976dcac779ff000000000000003d4e185afe28b774b99d3890bd31054182fd098af7b7f1b1152c6959b0537b05b623dcb5c4ca9317471a40fa4998cca80e961efffb4e1aa25d8a17deef0c8694c4395fc99be3c3fe7aeb8af4929ce7d346ca62b25d48fda5390000002f78b233b520af08726ed9f0c340a5f8b4da8f4603ac0c3b698384e17a570dc8524823ed15af4ecfabb4b2541d3c114b7bba1c21a845c9cf0d1cc24aba47e30f557e2246ad95ccf7d2f80cc0ab26f08336ea1a33b79cf35b898837016eb211a1734c7af076e15451e33519fc8ef5f63ad07b39c8d23b85cf434e065e8a29a800655d127de6f6347b4951f97b5703dc78b1ca9d74ea6a9ae12ab3e0597d33361eada119b5132145fa4525c488c7fffd6ceda6e9a02ebd97ced6b0161f2cc84615ceb8b18883299c636e9e46724a9a0600a8bb02f3e489631d522019a35fe13c33caf9dd8768ddbc02a484c345c3eff254297b1dbb04989c3f9f3c7b3c985c39b1d313018068d3809bac8c657e39f4f692613e28387e955722908dd88b56163be8312ff47c5b6f280472935af74e97a5a8110a4d74496f4c8ec82ddb56d9b962d2fc43fa01a047706865c84f7cff36056cc4ac258021e1581d43badaaec6cc5a2ef989de9801fed6d4be2bfcfe07a69c46bffbe9dd03970800000000000000b972bdd6d89dc1ecf61c23d506114d0fba2bd1c69e8f7e3fccdcda85ce975ec1381b1cec6ddaa76e186719d819164300"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:20:42 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{0x0, 0x0, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:42 executing program 3: r0 = socket$kcm(0xa, 0x2, 0x73) socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup2(r2, r1) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) bind$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x69) connect(r0, &(0x7f0000000180)=@in6={0xa, 0x0, 0x0, @empty}, 0x3f) sendmmsg$inet_sctp(r0, &(0x7f00000061c0)=[{&(0x7f0000000080)=@in6={0xa, 0x0, 0x0, @loopback}, 0x1c, 0x0}], 0x4924924924924fc, 0x0) 07:20:43 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x1, 0x2, &(0x7f0000000000)=[{&(0x7f0000000080)="6abf0608000000cef241720d744f095eb55fb2a2e929777b0c8c216aff1ad5c98f13", 0x22, 0x405}, {0x0, 0x0, 0x34f9}], 0x40025, 0x0) [ 1563.017949] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1563.170468] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1563.202478] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1563.213403] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1563.223443] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1563.233136] Node 0 DMA32 free:32312kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13120kB pagetables:36860kB bounce:0kB free_pcp:1044kB local_pcp:700kB free_cma:0kB [ 1563.264812] CPU: 0 PID: 26636 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1563.272720] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1563.282082] Call Trace: [ 1563.284694] dump_stack+0x13e/0x194 [ 1563.288339] warn_alloc.cold+0x96/0x1af [ 1563.292323] ? zone_watermark_ok_safe+0x280/0x280 [ 1563.297188] ? wait_for_completion+0x390/0x390 [ 1563.301783] __alloc_pages_slowpath+0x2114/0x26c0 [ 1563.307347] ? warn_alloc+0xf0/0xf0 [ 1563.310993] ? find_held_lock+0x2d/0x110 [ 1563.315069] ? fs_reclaim_acquire+0x10/0x10 [ 1563.319411] __alloc_pages_nodemask+0x5d3/0x700 [ 1563.324218] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1563.329249] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1563.334193] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1563.339244] alloc_pages_current+0xe7/0x1e0 [ 1563.343590] kvm_mmu_create+0xd1/0x1c0 [ 1563.347499] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1563.351831] ? alloc_pages_current+0xef/0x1e0 [ 1563.356341] kvm_vcpu_init+0x26d/0x360 [ 1563.360240] vmx_create_vcpu+0xf3/0x2900 [ 1563.364322] ? __mutex_unlock_slowpath+0x75/0x780 [ 1563.369178] ? futex_wake+0x11c/0x3d0 [ 1563.372990] ? handle_rdmsr+0x6b0/0x6b0 [ 1563.376982] kvm_vm_ioctl+0x49c/0x1430 [ 1563.379760] syz-executor.0 cpuset= [ 1563.380892] ? __lock_acquire+0x5f7/0x4620 [ 1563.380904] ? kvm_vcpu_release+0xa0/0xa0 [ 1563.380915] ? trace_hardirqs_on+0x10/0x10 [ 1563.380932] ? trace_hardirqs_on+0x10/0x10 [ 1563.380944] ? save_trace+0x290/0x290 [ 1563.380953] ? __might_fault+0x104/0x1b0 [ 1563.380967] ? kvm_vcpu_release+0xa0/0xa0 [ 1563.380980] do_vfs_ioctl+0x75a/0xfe0 [ 1563.380994] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1563.388120] syz0 [ 1563.388784] ? ioctl_preallocate+0x1a0/0x1a0 [ 1563.413191] mems_allowed=0-1 [ 1563.413609] ? security_file_ioctl+0x76/0xb0 [ 1563.438453] ? security_file_ioctl+0x83/0xb0 [ 1563.442884] SyS_ioctl+0x7f/0xb0 [ 1563.446257] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1563.450236] do_syscall_64+0x1d5/0x640 [ 1563.454134] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1563.459334] RIP: 0033:0x45c849 [ 1563.462529] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1563.470381] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1563.477658] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1563.484935] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1563.492216] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1563.499496] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1563.508494] CPU: 1 PID: 26632 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1563.516405] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1563.525769] Call Trace: [ 1563.528371] dump_stack+0x13e/0x194 [ 1563.532011] warn_alloc.cold+0x96/0x1af [ 1563.535988] ? zone_watermark_ok_safe+0x280/0x280 [ 1563.540847] ? wait_for_completion+0x390/0x390 [ 1563.541557] lowmem_reserve[]: [ 1563.545443] __alloc_pages_slowpath+0x2114/0x26c0 [ 1563.545469] ? warn_alloc+0xf0/0xf0 [ 1563.553065] 0 [ 1563.553408] ? find_held_lock+0x2d/0x110 [ 1563.561545] 0 [ 1563.562868] ? fs_reclaim_acquire+0x10/0x10 [ 1563.562888] __alloc_pages_nodemask+0x5d3/0x700 [ 1563.565851] 0 [ 1563.568993] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1563.569004] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1563.569011] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1563.569031] alloc_pages_current+0xe7/0x1e0 [ 1563.582566] 0 [ 1563.585322] kvm_mmu_create+0xd1/0x1c0 [ 1563.585334] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1563.585346] ? alloc_pages_current+0xef/0x1e0 [ 1563.598149] 0 [ 1563.600351] kvm_vcpu_init+0x26d/0x360 [ 1563.600364] vmx_create_vcpu+0xf3/0x2900 [ 1563.600379] ? __mutex_unlock_slowpath+0x75/0x780 [ 1563.600391] ? futex_wake+0x11c/0x3d0 [ 1563.609198] ? handle_rdmsr+0x6b0/0x6b0 [ 1563.609214] kvm_vm_ioctl+0x49c/0x1430 [ 1563.609227] ? __lock_acquire+0x5f7/0x4620 [ 1563.613386] Node 0 [ 1563.615002] ? kvm_vcpu_release+0xa0/0xa0 [ 1563.615016] ? trace_hardirqs_on+0x10/0x10 [ 1563.615031] ? trace_hardirqs_on+0x10/0x10 [ 1563.621428] Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1563.623936] ? save_trace+0x290/0x290 [ 1563.623948] ? __might_fault+0x104/0x1b0 [ 1563.623964] ? kvm_vcpu_release+0xa0/0xa0 [ 1563.623979] do_vfs_ioctl+0x75a/0xfe0 [ 1563.631229] lowmem_reserve[]: [ 1563.631765] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1563.640357] 0 [ 1563.642107] ? ioctl_preallocate+0x1a0/0x1a0 [ 1563.642132] ? security_file_ioctl+0x76/0xb0 [ 1563.648554] 0 [ 1563.650498] ? security_file_ioctl+0x83/0xb0 [ 1563.650512] SyS_ioctl+0x7f/0xb0 [ 1563.650520] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1563.650532] do_syscall_64+0x1d5/0x640 [ 1563.650548] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1563.657065] 0 [ 1563.679691] RIP: 0033:0x45c849 [ 1563.679698] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1563.679706] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1563.679710] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1563.679715] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1563.679719] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1563.679724] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1563.943821] 0 0 [ 1563.952505] Node 1 Normal free:2140952kB min:53612kB low:67012kB high:80412kB active_anon:1218348kB inactive_anon:12kB active_file:28968kB inactive_file:26292kB unevictable:0kB writepending:220kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12832kB pagetables:29072kB bounce:0kB free_pcp:848kB local_pcp:348kB free_cma:0kB [ 1563.983002] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1564.014542] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1564.047832] lowmem_reserve[]: 0 0 0 0 0 [ 1564.048987] CPU: 1 PID: 26654 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1564.056424] Node 0 [ 1564.059776] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1564.059780] Call Trace: [ 1564.059799] dump_stack+0x13e/0x194 [ 1564.059813] warn_alloc.cold+0x96/0x1af [ 1564.068748] DMA: [ 1564.071403] ? zone_watermark_ok_safe+0x280/0x280 [ 1564.071424] ? wait_for_completion+0x390/0x390 [ 1564.071437] __alloc_pages_slowpath+0x2114/0x26c0 [ 1564.071458] ? warn_alloc+0xf0/0xf0 [ 1564.076301] Mem-Info: [ 1564.077672] ? find_held_lock+0x2d/0x110 [ 1564.077686] ? fs_reclaim_acquire+0x10/0x10 [ 1564.077704] __alloc_pages_nodemask+0x5d3/0x700 [ 1564.083014] 1*4kB [ 1564.083741] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1564.093055] active_anon:797352 inactive_anon:199 isolated_anon:0 [ 1564.093055] active_file:7250 inactive_file:6574 isolated_file:0 [ 1564.093055] unevictable:0 dirty:31 writeback:0 unstable:0 [ 1564.093055] slab_reclaimable:12649 slab_unreclaimable:132763 [ 1564.093055] mapped:59130 shmem:548 pagetables:16484 bounce:0 [ 1564.093055] free:546045 free_pcp:496 free_cma:0 [ 1564.093155] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1564.093166] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1564.099340] (M) [ 1564.101745] alloc_pages_current+0xe7/0x1e0 [ 1564.101761] kvm_mmu_create+0xd1/0x1c0 [ 1564.101780] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1564.101790] ? alloc_pages_current+0xef/0x1e0 [ 1564.107638] 2*8kB [ 1564.108356] kvm_vcpu_init+0x26d/0x360 [ 1564.114043] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1564.117359] vmx_create_vcpu+0xf3/0x2900 [ 1564.117377] ? __mutex_unlock_slowpath+0x75/0x780 [ 1564.117389] ? futex_wake+0x11c/0x3d0 [ 1564.124122] Node 1 active_anon:1218348kB inactive_anon:12kB active_file:28968kB inactive_file:26292kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27588kB dirty:120kB writeback:0kB shmem:988kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1564.124554] ? handle_rdmsr+0x6b0/0x6b0 [ 1564.158511] (H) [ 1564.163157] kvm_vm_ioctl+0x49c/0x1430 [ 1564.163173] ? __lock_acquire+0x5f7/0x4620 [ 1564.163183] ? kvm_vcpu_release+0xa0/0xa0 [ 1564.163199] ? trace_hardirqs_on+0x10/0x10 [ 1564.172861] 3*16kB [ 1564.174546] ? trace_hardirqs_on+0x10/0x10 [ 1564.174561] ? save_trace+0x290/0x290 [ 1564.174574] ? __might_fault+0x104/0x1b0 [ 1564.180874] (H) [ 1564.182816] ? kvm_vcpu_release+0xa0/0xa0 [ 1564.182829] do_vfs_ioctl+0x75a/0xfe0 [ 1564.182843] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1564.189622] 2*32kB [ 1564.193371] ? ioctl_preallocate+0x1a0/0x1a0 [ 1564.193391] ? security_file_ioctl+0x76/0xb0 [ 1564.193401] ? security_file_ioctl+0x83/0xb0 [ 1564.193412] SyS_ioctl+0x7f/0xb0 [ 1564.193423] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1564.249158] Node 0 [ 1564.261827] do_syscall_64+0x1d5/0x640 [ 1564.261845] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1564.261853] RIP: 0033:0x45c849 [ 1564.261858] RSP: 002b:00007f75f723cc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1564.261867] RAX: ffffffffffffffda RBX: 00007f75f723d6d4 RCX: 000000000045c849 [ 1564.261873] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1564.261878] RBP: 000000000076c040 R08: 0000000000000000 R09: 0000000000000000 [ 1564.261883] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1564.261888] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076c04c [ 1564.396476] (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1564.407258] Node 0 DMA32: 642*4kB (UMEH) 1296*8kB (UMEH) 775*16kB (UEH) 225*32kB (UEH) 5*64kB (UEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 32856kB [ 1564.433445] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1564.471367] Node 1 Normal: 56*4kB (UM) 194*8kB (UME) 77*16kB (ME) 151*32kB (UME) 107*64kB (UME) 45*128kB (UM) 30*256kB (UME) 16*512kB (UM) 11*1024kB (UME) 9*2048kB (UME) 506*4096kB (UM) = 2138592kB [ 1564.534078] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1564.567329] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1564.597938] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1564.607304] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1564.644138] 14389 total pagecache pages [ 1564.661138] 0 pages in swap cache [ 1564.664893] Swap cache stats: add 0, delete 0, find 0/0 [ 1564.676188] Free swap = 0kB [ 1564.684469] Total swap = 0kB [ 1564.688483] 1965979 pages RAM 07:20:44 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = socket$inet6_tcp(0xa, 0x1, 0x0) r3 = fcntl$dupfd(r2, 0x0, r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x881) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r4, 0xae80, 0x0) r5 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r4, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r5, r4) socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r7 = openat$selinux_policy(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/policy\x00', 0x0, 0x0) setsockopt$IP_VS_SO_SET_DELDEST(r7, 0x0, 0x488, &(0x7f00000000c0)={{0x2c, @remote, 0x4e21, 0x1, 'lblc\x00', 0x20, 0x3, 0x76}, {@loopback, 0x4e20, 0xc4777f70ab68dcb8, 0x40, 0x4, 0x6}}, 0x44) r8 = dup(r6) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:20:44 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{0x0, 0x0, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:44 executing program 3: socket$inet_udplite(0x2, 0x2, 0x88) prlimit64(0x0, 0x7, &(0x7f0000000280)={0x7, 0x8d}, 0x0) socket(0x10, 0x80002, 0x0) socket$inet6(0xa, 0x2, 0x0) r0 = socket(0x1000000010, 0x80002, 0x0) ioctl$sock_SIOCGSKNS(r0, 0x894c, 0x0) 07:20:44 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) open(&(0x7f0000000040)='./file0\x00', 0x40, 0x50) [ 1564.692247] 0 pages HighMem/MovableOnly [ 1564.699861] 339049 pages reserved [ 1564.704802] 0 pages cma reserved [ 1564.763785] DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 07:20:44 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{0x0, 0x0, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:44 executing program 3: socket$inet_udplite(0x2, 0x2, 0x88) prlimit64(0x0, 0x7, &(0x7f0000000280)={0x7, 0x8d}, 0x0) socket(0x10, 0x80002, 0x0) socket$inet6(0xa, 0x2, 0x0) r0 = socket(0x1000000010, 0x80002, 0x0) ioctl$sock_SIOCGSKNS(r0, 0x894c, 0x0) [ 1564.888301] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1564.934544] Node 0 DMA32 free:32956kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13120kB pagetables:36860kB bounce:0kB free_pcp:1356kB local_pcp:660kB free_cma:0kB [ 1565.015251] lowmem_reserve[]: 0 0 0 0 0 [ 1565.056113] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1565.064648] warn_alloc_show_mem: 1 callbacks suppressed [ 1565.064652] Mem-Info: [ 1565.142615] lowmem_reserve[]: 0 0 0 0 0 [ 1565.157601] Node 1 Normal free:2141576kB min:53612kB low:67012kB high:80412kB active_anon:1218188kB inactive_anon:16kB active_file:28972kB inactive_file:26360kB unevictable:0kB writepending:184kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12672kB pagetables:28960kB bounce:0kB free_pcp:1348kB local_pcp:668kB free_cma:0kB [ 1565.167244] active_anon:797312 inactive_anon:200 isolated_anon:0 [ 1565.167244] active_file:7251 inactive_file:6591 isolated_file:0 [ 1565.167244] unevictable:0 dirty:35 writeback:0 unstable:0 [ 1565.167244] slab_reclaimable:12672 slab_unreclaimable:132562 [ 1565.167244] mapped:59114 shmem:548 pagetables:16456 bounce:0 [ 1565.167244] free:546190 free_pcp:686 free_cma:0 [ 1565.257649] lowmem_reserve[]: 0 0 0 0 0 [ 1565.275310] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1565.304400] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1565.324894] Node 0 [ 1565.370092] Node 1 active_anon:1218188kB inactive_anon:16kB active_file:28972kB inactive_file:26360kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27524kB dirty:136kB writeback:0kB shmem:988kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1565.371762] DMA32: [ 1565.372373] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1565.480133] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1565.482009] 669*4kB [ 1565.485221] Node 0 DMA32 free:32956kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13120kB pagetables:36860kB bounce:0kB free_pcp:1424kB local_pcp:720kB free_cma:0kB [ 1565.485244] lowmem_reserve[]: 0 0 0 0 0 [ 1565.509496] (UMEH) 1304*8kB (UMEH) 775*16kB (UEH) 225*32kB (UEH) 5*64kB (UEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 33028kB [ 1565.570182] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1565.593345] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1565.620098] lowmem_reserve[]: 0 0 0 0 0 [ 1565.624151] Node 1 Normal free:2141096kB min:53612kB low:67012kB high:80412kB active_anon:1218188kB inactive_anon:16kB active_file:28972kB inactive_file:26360kB unevictable:0kB writepending:184kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12704kB pagetables:28960kB bounce:0kB free_pcp:1156kB local_pcp:704kB free_cma:0kB [ 1565.631923] Node 1 [ 1565.710102] lowmem_reserve[]: 0 0 0 0 0 [ 1565.716382] Node 0 DMA: 1*4kB (M) 2*8kB (H) 3*16kB (H) 2*32kB (UH) 3*64kB (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1565.723129] Normal: 165*4kB (UME) 368*8kB (UME) 171*16kB (UME) 150*32kB (UME) 107*64kB (UME) 48*128kB (UM) 30*256kB (UME) 16*512kB (UM) 11*1024kB (UME) 9*2048kB (UME) 506*4096kB (UM) = 2142276kB [ 1565.770094] Node 0 DMA32: 669*4kB (UMEH) 1304*8kB (UMEH) 775*16kB (UEH) 225*32kB (UEH) 5*64kB (UEH) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 33028kB [ 1565.810126] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1565.825169] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1565.840086] Node 1 Normal: 165*4kB (UME) 175*8kB (UME) 189*16kB (UME) 153*32kB (UME) 107*64kB (UME) 48*128kB (UM) 30*256kB (UME) 16*512kB (UM) 11*1024kB (UME) 9*2048kB (UME) 506*4096kB (UM) = 2141116kB [ 1565.847529] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1565.900115] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1565.909043] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1565.934339] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1565.940092] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1565.959572] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1565.970114] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1565.990128] 14389 total pagecache pages [ 1565.994146] 0 pages in swap cache [ 1565.997403] 14389 total pagecache pages [ 1565.997598] Swap cache stats: add 0, delete 0, find 0/0 [ 1566.011912] 0 pages in swap cache [ 1566.033564] Free swap = 0kB [ 1566.035823] Swap cache stats: add 0, delete 0, find 0/0 [ 1566.043306] Total swap = 0kB [ 1566.053118] 1965979 pages RAM [ 1566.054850] Free swap = 0kB [ 1566.062984] 0 pages HighMem/MovableOnly [ 1566.065964] Total swap = 0kB [ 1566.075938] 339049 pages reserved [ 1566.087312] 0 pages cma reserved [ 1566.091580] 1965979 pages RAM [ 1566.106719] 0 pages HighMem/MovableOnly [ 1566.117076] 339049 pages reserved [ 1566.152930] 0 pages cma reserved 07:20:46 executing program 3: socket$inet_udplite(0x2, 0x2, 0x88) prlimit64(0x0, 0x7, &(0x7f0000000280)={0x7, 0x8d}, 0x0) socket(0x10, 0x80002, 0x0) socket$inet6(0xa, 0x2, 0x0) r0 = socket(0x1000000010, 0x80002, 0x0) ioctl$sock_SIOCGSKNS(r0, 0x894c, 0x0) 07:20:46 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) r2 = openat$selinux_avc_cache_stats(0xffffffffffffff9c, &(0x7f0000000040)='/selinux/avc/cache_stats\x00', 0x0, 0x0) accept$phonet_pipe(r2, &(0x7f0000000080), &(0x7f0000000100)=0x10) 07:20:46 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x0, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:46 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) r3 = openat$dlm_monitor(0xffffffffffffff9c, &(0x7f0000000080)='/dev/dlm-monitor\x00', 0x40080, 0x0) ioctl$VIDIOC_SUBDEV_ENUM_MBUS_CODE(r3, 0xc0305602, &(0x7f00000000c0)={0x0, 0x4, 0x2006, 0x1}) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000980)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) r4 = fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x4001ff) ioctl$VHOST_GET_FEATURES(r4, 0x8008af00, &(0x7f00000001c0)) dup2(r1, 0xffffffffffffffff) syz_open_dev$sndmidi(&(0x7f0000000140)='/dev/snd/midiC#D#\x00', 0x7fff, 0x8000) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r6 = dup(r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000100)=ANY=[@ANYRES32=r5], 0x1) ioctl$KVM_S390_VCPU_FAULT(r2, 0x4008ae52, &(0x7f0000000180)=0xe4) 07:20:46 executing program 0: r0 = openat$selinux_checkreqprot(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/checkreqprot\x00', 0x2000, 0x0) setsockopt$inet_icmp_ICMP_FILTER(r0, 0x1, 0x1, &(0x7f00000000c0)={0x1}, 0x4) r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r2, 0xae60) r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r3, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r3, 0xae80, 0x0) r4 = socket$inet(0x2, 0x4000000805, 0x0) r5 = socket$inet_sctp(0x2, 0x5, 0x84) r6 = dup3(r4, r5, 0x0) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r5, 0x84, 0x64, &(0x7f0000d6cff0)=[@in={0x2, 0x4e20, @loopback}], 0x10) sendto$inet(r6, &(0x7f0000fa3fff)='\t', 0x1, 0x0, &(0x7f00006f7000)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10) sendto$inet(r5, &(0x7f00003cef9f)='7', 0x1, 0x0, &(0x7f0000618000)={0x2, 0x4e20, @loopback}, 0x10) getsockopt$inet_sctp_SCTP_GET_ASSOC_ID_LIST(r5, 0x84, 0x1d, &(0x7f000025e000)={0x2, [0x0, 0x0]}, &(0x7f0000a8a000)=0xc) getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r6, 0x84, 0x7a, &(0x7f000059aff8)={r7}, &(0x7f000034f000)=0x2059b000) getsockopt$inet_sctp6_SCTP_GET_LOCAL_ADDRS(r2, 0x84, 0x6d, &(0x7f0000000100)=ANY=[@ANYRES32=r7, @ANYBLOB="d60000002062fc367a44f4ec0345d27276f0bd5ad6957b9b10ce6768032038338f897e845134ef389e0f08395c78429561e83a123fad8b637c8374df436f4a51baa5abeca59b267af25a70beffd802435711e601f8551baad5de60c7a795299422b1d95bca6cd32c8fb22bf069efca2c9419ab29d801010000b7b51c5619f8773f1faf1b9cd7c0d60efc6b0fbf6bbf4114c5e7b02f22ee8adcbf132a91adc5b405c33ceb42db022c7903f8d72527f43267ae54cdd759beb9c9d68c200113631c6de2f181c0eeb4c15226736ff6ec7c268e5095d6e96a82a0c9dc"], &(0x7f0000000200)=0xde) ioctl$KVM_TPR_ACCESS_REPORTING(r3, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:20:46 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) r6 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r6, 0x0, r6) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) r8 = fcntl$dupfd(r7, 0x0, r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) r9 = accept$netrom(r8, &(0x7f0000000080)={{0x3, @null}, [@rose, @default, @default, @default, @rose, @default, @bcast, @rose]}, &(0x7f0000000100)=0x48) tee(r6, r9, 0x101, 0xc) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:20:46 executing program 3: socket$inet_udplite(0x2, 0x2, 0x88) prlimit64(0x0, 0x7, &(0x7f0000000280)={0x7, 0x8d}, 0x0) socket(0x10, 0x80002, 0x0) socket$inet6(0xa, 0x2, 0x0) r0 = socket(0x1000000010, 0x80002, 0x0) ioctl$sock_SIOCGSKNS(r0, 0x894c, 0x0) 07:20:46 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) syz_genetlink_get_family_id$netlbl_calipso(&(0x7f0000000080)='NLBL_CALIPSO\x00') dup(r0) socket$inet6_tcp(0xa, 0x1, 0x0) r1 = syz_open_dev$vcsa(&(0x7f0000000100)='/dev/vcsa#\x00', 0x1ff, 0x4000) socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(0xffffffffffffffff, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) r5 = socket$inet6_tcp(0xa, 0x1, 0x0) r6 = fcntl$dupfd(r5, 0x0, r5) ioctl$PERF_EVENT_IOC_ENABLE(r6, 0x8912, 0x400200) r7 = socket$inet6_tcp(0xa, 0x1, 0x0) r8 = fcntl$dupfd(r7, 0x0, r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) r9 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/seq/clients\x00', 0x0, 0x0) ioctl$PERF_EVENT_IOC_ENABLE(r9, 0x8912, 0x3f) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) 07:20:46 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x0, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:46 executing program 3: socket$inet_udplite(0x2, 0x2, 0x88) prlimit64(0x0, 0x7, &(0x7f0000000280)={0x7, 0x8d}, 0x0) socket(0x10, 0x80002, 0x0) socket$inet6(0xa, 0x2, 0x0) ioctl$sock_SIOCGSKNS(0xffffffffffffffff, 0x894c, 0x0) [ 1566.505335] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) 07:20:46 executing program 2: r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) r1 = dup(r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x1, 0x0) [ 1566.505519] syz-executor.1: [ 1566.574758] syz-executor.0 cpuset= [ 1566.579006] page allocation failure: order:0 [ 1566.586699] syz0 [ 1566.592758] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1566.617257] mems_allowed=0-1 [ 1566.647053] CPU: 0 PID: 26720 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1566.654987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1566.664349] Call Trace: [ 1566.666950] dump_stack+0x13e/0x194 [ 1566.670597] warn_alloc.cold+0x96/0x1af [ 1566.674585] ? zone_watermark_ok_safe+0x280/0x280 [ 1566.679452] ? wait_for_completion+0x390/0x390 [ 1566.684067] __alloc_pages_slowpath+0x2114/0x26c0 [ 1566.688930] ? warn_alloc+0xf0/0xf0 [ 1566.691127] syz-executor.4: [ 1566.692569] ? find_held_lock+0x2d/0x110 [ 1566.692583] ? fs_reclaim_acquire+0x10/0x10 [ 1566.692604] __alloc_pages_nodemask+0x5d3/0x700 [ 1566.692617] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1566.692626] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1566.705271] page allocation failure: order:0 [ 1566.708692] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1566.708715] alloc_pages_current+0xe7/0x1e0 [ 1566.708731] kvm_mmu_create+0xd1/0x1c0 [ 1566.708745] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1566.740502] ? alloc_pages_current+0xef/0x1e0 [ 1566.745136] kvm_vcpu_init+0x26d/0x360 [ 1566.749040] vmx_create_vcpu+0xf3/0x2900 [ 1566.753149] ? __mutex_unlock_slowpath+0x75/0x780 [ 1566.757334] , mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1566.757995] ? futex_wake+0x11c/0x3d0 [ 1566.758008] ? handle_rdmsr+0x6b0/0x6b0 [ 1566.772176] kvm_vm_ioctl+0x49c/0x1430 [ 1566.776076] ? __lock_acquire+0x5f7/0x4620 [ 1566.780321] ? kvm_vcpu_release+0xa0/0xa0 [ 1566.784482] ? trace_hardirqs_on+0x10/0x10 [ 1566.788735] ? trace_hardirqs_on+0x10/0x10 [ 1566.793022] ? save_trace+0x290/0x290 [ 1566.796827] ? __might_fault+0x104/0x1b0 [ 1566.800899] ? kvm_vcpu_release+0xa0/0xa0 [ 1566.803480] syz-executor.4 cpuset= [ 1566.805050] do_vfs_ioctl+0x75a/0xfe0 [ 1566.805064] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1566.805076] ? ioctl_preallocate+0x1a0/0x1a0 [ 1566.805098] ? security_file_ioctl+0x76/0xb0 [ 1566.813039] syz4 [ 1566.814072] ? security_file_ioctl+0x83/0xb0 [ 1566.834010] SyS_ioctl+0x7f/0xb0 [ 1566.836756] mems_allowed=0-1 [ 1566.837400] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1566.837416] do_syscall_64+0x1d5/0x640 [ 1566.837432] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1566.837442] RIP: 0033:0x45c849 [ 1566.856939] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1566.864653] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1566.871931] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000005 [ 1566.879208] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1566.886510] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff 07:20:46 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x0, @local}, 0x10, &(0x7f0000002640)=[{&(0x7f0000000200)="a2", 0x1}], 0x1}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1566.893796] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1566.904508] CPU: 1 PID: 26734 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1566.913402] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1566.922763] Call Trace: [ 1566.925364] dump_stack+0x13e/0x194 [ 1566.929003] warn_alloc.cold+0x96/0x1af [ 1566.929350] syz-executor.1 cpuset= [ 1566.932978] ? zone_watermark_ok_safe+0x280/0x280 [ 1566.932998] ? wait_for_completion+0x390/0x390 [ 1566.933013] __alloc_pages_slowpath+0x2114/0x26c0 [ 1566.933034] ? warn_alloc+0xf0/0xf0 [ 1566.950530] syz1 [ 1566.950860] ? find_held_lock+0x2d/0x110 [ 1566.960498] ? fs_reclaim_acquire+0x10/0x10 [ 1566.963217] mems_allowed=0-1 [ 1566.964851] __alloc_pages_nodemask+0x5d3/0x700 [ 1566.964865] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1566.977657] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1566.982507] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1566.987534] alloc_pages_current+0xe7/0x1e0 [ 1566.991865] kvm_mmu_create+0xd1/0x1c0 [ 1566.995764] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1567.000148] ? alloc_pages_current+0xef/0x1e0 [ 1567.004665] kvm_vcpu_init+0x26d/0x360 [ 1567.008563] vmx_create_vcpu+0xf3/0x2900 [ 1567.012649] ? __mutex_unlock_slowpath+0x75/0x780 [ 1567.017507] ? futex_wake+0x11c/0x3d0 [ 1567.021312] ? handle_rdmsr+0x6b0/0x6b0 [ 1567.025302] kvm_vm_ioctl+0x49c/0x1430 [ 1567.029190] ? __lock_acquire+0x5f7/0x4620 [ 1567.033427] ? kvm_vcpu_release+0xa0/0xa0 [ 1567.037572] ? trace_hardirqs_on+0x10/0x10 [ 1567.041813] ? trace_hardirqs_on+0x10/0x10 [ 1567.046065] ? save_trace+0x290/0x290 [ 1567.049890] ? __might_fault+0x104/0x1b0 [ 1567.053955] ? kvm_vcpu_release+0xa0/0xa0 [ 1567.058116] do_vfs_ioctl+0x75a/0xfe0 [ 1567.062123] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1567.066873] ? ioctl_preallocate+0x1a0/0x1a0 [ 1567.071279] ? security_file_ioctl+0x76/0xb0 [ 1567.075682] ? security_file_ioctl+0x83/0xb0 [ 1567.080100] SyS_ioctl+0x7f/0xb0 [ 1567.083474] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1567.087455] do_syscall_64+0x1d5/0x640 [ 1567.091349] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1567.096545] RIP: 0033:0x45c849 [ 1567.099729] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1567.107441] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1567.114708] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1567.121970] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1567.129261] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1567.136530] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1567.143810] CPU: 0 PID: 26723 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1567.151706] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1567.161295] Call Trace: [ 1567.163899] dump_stack+0x13e/0x194 [ 1567.167540] warn_alloc.cold+0x96/0x1af [ 1567.171526] ? zone_watermark_ok_safe+0x280/0x280 [ 1567.176387] ? wait_for_completion+0x390/0x390 [ 1567.180987] __alloc_pages_slowpath+0x2114/0x26c0 [ 1567.185854] ? warn_alloc+0xf0/0xf0 [ 1567.189508] ? find_held_lock+0x2d/0x110 [ 1567.193579] ? fs_reclaim_acquire+0x10/0x10 [ 1567.197917] __alloc_pages_nodemask+0x5d3/0x700 [ 1567.202591] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1567.207608] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1567.213329] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1567.218600] alloc_pages_current+0xe7/0x1e0 [ 1567.222936] kvm_mmu_create+0xd1/0x1c0 [ 1567.226838] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1567.231251] ? alloc_pages_current+0xef/0x1e0 [ 1567.235757] kvm_vcpu_init+0x26d/0x360 [ 1567.239661] vmx_create_vcpu+0xf3/0x2900 [ 1567.243756] ? __mutex_unlock_slowpath+0x75/0x780 [ 1567.248605] ? futex_wake+0x11c/0x3d0 [ 1567.252407] ? handle_rdmsr+0x6b0/0x6b0 [ 1567.256392] kvm_vm_ioctl+0x49c/0x1430 [ 1567.260283] ? __lock_acquire+0x5f7/0x4620 [ 1567.264521] ? kvm_vcpu_release+0xa0/0xa0 [ 1567.268676] ? trace_hardirqs_on+0x10/0x10 [ 1567.272921] ? trace_hardirqs_on+0x10/0x10 [ 1567.277196] ? save_trace+0x290/0x290 [ 1567.281010] ? __might_fault+0x104/0x1b0 [ 1567.285087] ? kvm_vcpu_release+0xa0/0xa0 [ 1567.289255] do_vfs_ioctl+0x75a/0xfe0 [ 1567.293066] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1567.297833] ? ioctl_preallocate+0x1a0/0x1a0 [ 1567.302259] ? security_file_ioctl+0x76/0xb0 [ 1567.306673] ? security_file_ioctl+0x83/0xb0 [ 1567.311109] SyS_ioctl+0x7f/0xb0 [ 1567.314620] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1567.318607] do_syscall_64+0x1d5/0x640 [ 1567.322509] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1567.327711] RIP: 0033:0x45c849 [ 1567.330902] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1567.338613] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 07:20:47 executing program 2: socket$inet_icmp_raw(0x2, 0x3, 0x1) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) fcntl$dupfd(r0, 0x0, r0) dup(r0) r1 = socket$inet6_tcp(0xa, 0x1, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x7) syz_mount_image$minix(&(0x7f0000000180)='minix\x00', &(0x7f0000000140)='./file0\x00', 0x0, 0x2, &(0x7f0000000000)=[{&(0x7f00000000c0)="6a0084e0ef97d3ce0c8c21eaff1ad5c98f13", 0x12, 0x400}, {0x0, 0x0, 0x34f9}], 0x0, 0x0) 07:20:47 executing program 3: socket$inet_udplite(0x2, 0x2, 0x88) prlimit64(0x0, 0x7, &(0x7f0000000280)={0x7, 0x8d}, 0x0) socket(0x10, 0x80002, 0x0) socket$inet6(0xa, 0x2, 0x0) ioctl$sock_SIOCGSKNS(0xffffffffffffffff, 0x894c, 0x0) [ 1567.345893] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1567.353167] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1567.360478] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1567.367760] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1567.383651] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) 07:20:47 executing program 3: socket$inet_udplite(0x2, 0x2, 0x88) prlimit64(0x0, 0x7, &(0x7f0000000280)={0x7, 0x8d}, 0x0) socket(0x10, 0x80002, 0x0) socket$inet6(0xa, 0x2, 0x0) ioctl$sock_SIOCGSKNS(0xffffffffffffffff, 0x894c, 0x0) [ 1567.504678] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1567.530509] CPU: 0 PID: 26731 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1567.538595] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1567.547959] Call Trace: [ 1567.550564] dump_stack+0x13e/0x194 [ 1567.554215] warn_alloc.cold+0x96/0x1af [ 1567.558206] ? zone_watermark_ok_safe+0x280/0x280 [ 1567.563071] ? wait_for_completion+0x390/0x390 [ 1567.567672] __alloc_pages_slowpath+0x2114/0x26c0 [ 1567.572539] ? warn_alloc+0xf0/0xf0 [ 1567.576344] ? find_held_lock+0x2d/0x110 [ 1567.580419] ? fs_reclaim_acquire+0x10/0x10 [ 1567.584752] __alloc_pages_nodemask+0x5d3/0x700 [ 1567.589953] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1567.594982] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1567.599830] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1567.604865] alloc_pages_current+0xe7/0x1e0 [ 1567.609377] kvm_mmu_create+0xd1/0x1c0 [ 1567.613303] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1567.617657] ? alloc_pages_current+0xef/0x1e0 [ 1567.622163] kvm_vcpu_init+0x26d/0x360 [ 1567.626066] vmx_create_vcpu+0xf3/0x2900 [ 1567.630142] ? __mutex_unlock_slowpath+0x75/0x780 [ 1567.634989] ? futex_wake+0x11c/0x3d0 [ 1567.638795] ? handle_rdmsr+0x6b0/0x6b0 [ 1567.642781] kvm_vm_ioctl+0x49c/0x1430 [ 1567.646677] ? __lock_acquire+0x5f7/0x4620 [ 1567.650920] ? kvm_vcpu_release+0xa0/0xa0 [ 1567.655095] ? trace_hardirqs_on+0x10/0x10 [ 1567.659341] ? trace_hardirqs_on+0x10/0x10 [ 1567.663585] ? save_trace+0x290/0x290 [ 1567.667421] ? __might_fault+0x104/0x1b0 [ 1567.671495] ? kvm_vcpu_release+0xa0/0xa0 [ 1567.675680] do_vfs_ioctl+0x75a/0xfe0 [ 1567.679492] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1567.684350] ? ioctl_preallocate+0x1a0/0x1a0 [ 1567.688777] ? security_file_ioctl+0x76/0xb0 [ 1567.693201] ? security_file_ioctl+0x83/0xb0 [ 1567.697622] SyS_ioctl+0x7f/0xb0 [ 1567.701084] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1567.705068] do_syscall_64+0x1d5/0x640 [ 1567.708972] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1567.714164] RIP: 0033:0x45c849 [ 1567.717353] RSP: 002b:00007f4cd9aa7c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1567.725063] RAX: ffffffffffffffda RBX: 00007f4cd9aa86d4 RCX: 000000000045c849 [ 1567.732333] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1567.739607] RBP: 000000000076bfa0 R08: 0000000000000000 R09: 0000000000000000 [ 1567.746884] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1567.754174] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bfac [ 1567.904904] Mem-Info: [ 1567.910195] active_anon:797365 inactive_anon:199 isolated_anon:0 [ 1567.910195] active_file:7251 inactive_file:6607 isolated_file:0 [ 1567.910195] unevictable:0 dirty:62 writeback:0 unstable:0 [ 1567.910195] slab_reclaimable:12672 slab_unreclaimable:131939 [ 1567.910195] mapped:59095 shmem:548 pagetables:16502 bounce:0 [ 1567.910195] free:547024 free_pcp:342 free_cma:0 [ 1567.996956] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1568.068699] Node 1 active_anon:1218400kB inactive_anon:12kB active_file:28972kB inactive_file:26424kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27448kB dirty:244kB writeback:0kB shmem:988kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1568.164093] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1568.220289] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1568.235602] Node 0 DMA32 free:34240kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:28kB inactive_file:8kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13120kB pagetables:36860kB bounce:0kB free_pcp:80kB local_pcp:36kB free_cma:0kB 07:20:48 executing program 1: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r2, 0xae80, 0x0) r3 = dup3(r0, r1, 0x0) setsockopt$RDS_CANCEL_SENT_TO(r3, 0x114, 0x1, &(0x7f0000000080)={0x2, 0x4e21, @empty}, 0x10) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x40000105]}) dup2(r3, r2) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r5 = dup(r4) ioctl$PERF_EVENT_IOC_ENABLE(r5, 0x8912, 0x400200) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='R'], 0x1) 07:20:48 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, 0x0}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1568.315789] lowmem_reserve[]: 0 0 0 0 0 [ 1568.324969] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1568.460129] lowmem_reserve[]: 0 0 0 0 0 [ 1568.493540] Node 1 Normal free:2142764kB min:53612kB low:67012kB high:80412kB active_anon:1218184kB inactive_anon:20kB active_file:28972kB inactive_file:26428kB unevictable:0kB writepending:264kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:12768kB pagetables:29060kB bounce:0kB free_pcp:976kB local_pcp:452kB free_cma:0kB [ 1568.555182] syz-executor.1: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1568.613210] syz-executor.1 cpuset=syz1 mems_allowed=0-1 [ 1568.618536] lowmem_reserve[]: 0 0 0 0 0 [ 1568.629568] CPU: 0 PID: 26798 Comm: syz-executor.1 Not tainted 4.14.174-syzkaller #0 [ 1568.635435] Node 0 [ 1568.637476] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1568.637480] Call Trace: [ 1568.637499] dump_stack+0x13e/0x194 [ 1568.637513] warn_alloc.cold+0x96/0x1af [ 1568.645976] DMA: [ 1568.649212] ? zone_watermark_ok_safe+0x280/0x280 [ 1568.649233] ? wait_for_completion+0x390/0x390 [ 1568.649246] __alloc_pages_slowpath+0x2114/0x26c0 [ 1568.665718] 1*4kB [ 1568.666333] ? warn_alloc+0xf0/0xf0 [ 1568.681567] ? find_held_lock+0x2d/0x110 [ 1568.683844] (M) [ 1568.685724] ? fs_reclaim_acquire+0x10/0x10 [ 1568.685747] __alloc_pages_nodemask+0x5d3/0x700 [ 1568.685758] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1568.685769] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1568.692724] 2*8kB [ 1568.696717] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1568.696740] alloc_pages_current+0xe7/0x1e0 [ 1568.696755] kvm_mmu_create+0xd1/0x1c0 [ 1568.696768] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1568.726700] ? alloc_pages_current+0xef/0x1e0 [ 1568.726702] (H) 3*16kB [ 1568.731419] kvm_vcpu_init+0x26d/0x360 [ 1568.731437] vmx_create_vcpu+0xf3/0x2900 [ 1568.731454] ? __mutex_unlock_slowpath+0x75/0x780 [ 1568.731463] ? futex_wake+0x11c/0x3d0 [ 1568.731473] ? handle_rdmsr+0x6b0/0x6b0 [ 1568.731486] kvm_vm_ioctl+0x49c/0x1430 [ 1568.731499] ? __lock_acquire+0x5f7/0x4620 [ 1568.731508] ? kvm_vcpu_release+0xa0/0xa0 [ 1568.731520] ? trace_hardirqs_on+0x10/0x10 [ 1568.746726] (H) [ 1568.747022] ? trace_hardirqs_on+0x10/0x10 [ 1568.761032] 2*32kB [ 1568.762906] ? save_trace+0x290/0x290 [ 1568.762918] ? __might_fault+0x104/0x1b0 [ 1568.762935] ? kvm_vcpu_release+0xa0/0xa0 [ 1568.762948] do_vfs_ioctl+0x75a/0xfe0 [ 1568.772242] (UH) [ 1568.773294] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1568.773308] ? ioctl_preallocate+0x1a0/0x1a0 [ 1568.773327] ? security_file_ioctl+0x76/0xb0 [ 1568.779879] 3*64kB [ 1568.783593] ? security_file_ioctl+0x83/0xb0 [ 1568.783607] SyS_ioctl+0x7f/0xb0 [ 1568.783617] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1568.783630] do_syscall_64+0x1d5/0x640 [ 1568.783647] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1568.783656] RIP: 0033:0x45c849 [ 1568.783660] RSP: 002b:00007f4cd9ac8c78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1568.783669] RAX: ffffffffffffffda RBX: 00007f4cd9ac96d4 RCX: 000000000045c849 [ 1568.783674] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1568.783678] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1568.783683] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1568.783687] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1569.142929] (UMH) 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1569.186713] Node 0 DMA32: 794*4kB (UMEH) 1347*8kB (UMEH) 781*16kB (UEH) 228*32kB (UEH) 5*64kB (UE) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 34064kB [ 1569.191998] warn_alloc_show_mem: 3 callbacks suppressed [ 1569.192002] Mem-Info: [ 1569.232489] active_anon:797297 inactive_anon:201 isolated_anon:0 [ 1569.232489] active_file:7250 inactive_file:6623 isolated_file:0 [ 1569.232489] unevictable:0 dirty:12 writeback:0 unstable:0 [ 1569.232489] slab_reclaimable:12619 slab_unreclaimable:132307 [ 1569.232489] mapped:59110 shmem:549 pagetables:16451 bounce:0 [ 1569.232489] free:546880 free_pcp:278 free_cma:0 [ 1569.244045] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1569.388663] Node 1 Normal: 163*4kB (UME) 219*8kB (UME) 189*16kB (UME) 163*32kB (UME) 106*64kB (UME) 51*128kB (UM) 33*256kB (UME) 15*512kB (UM) 12*1024kB (UME) 9*2048kB (UME) 506*4096kB (UM) = 2143380kB [ 1569.390548] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:28kB inactive_file:8kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:0kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1569.452116] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1569.485632] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1569.510076] Node 1 active_anon:1218228kB inactive_anon:20kB active_file:28972kB inactive_file:26484kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27608kB dirty:48kB writeback:0kB shmem:992kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1569.537388] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1569.570687] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1569.576616] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1569.620078] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1569.625174] Node 0 DMA32 free:34064kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:28kB inactive_file:8kB unevictable:0kB writepending:0kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13120kB pagetables:36860kB bounce:0kB free_pcp:100kB local_pcp:88kB free_cma:0kB [ 1569.696618] lowmem_reserve[]: 0 0 0 0 0 [ 1569.700866] 14421 total pagecache pages [ 1569.704858] 0 pages in swap cache [ 1569.706841] Node 0 [ 1569.708392] Swap cache stats: add 0, delete 0, find 0/0 [ 1569.708396] Free swap = 0kB [ 1569.708399] Total swap = 0kB [ 1569.708406] 1965979 pages RAM [ 1569.708409] 0 pages HighMem/MovableOnly [ 1569.708413] 339049 pages reserved [ 1569.708418] 0 pages cma reserved 07:20:49 executing program 4: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = userfaultfd(0x0) ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f00000000c0)) ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000040)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1}) ioctl$UFFDIO_REGISTER(r2, 0xc028aa03, &(0x7f00000a0fe0)={{&(0x7f0000881000/0x400000)=nil, 0x400000}, 0x200000}) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KVM_SET_PIT(r4, 0x8048ae66, &(0x7f0000000080)={[{0x25d8, 0x800, 0x3, 0x2, 0x40, 0x3, 0x0, 0x7, 0xc0, 0x7a, 0x38, 0xee}, {0x0, 0x434c, 0xc8, 0x3, 0x5, 0x20, 0x7f, 0x1f, 0x5, 0x3, 0x8, 0x3, 0x5d9b2fd2}, {0x7ff, 0x7, 0x3, 0x4, 0x0, 0x27, 0x0, 0x2e, 0x1, 0x81, 0x0, 0xff, 0xffffffffffffffe1}], 0x7ff}) r5 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) ioctl$KVM_SET_LAPIC(r5, 0x4400ae8f, &(0x7f0000000580)={"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"}) ioctl$KVM_RUN(r5, 0xae80, 0x0) r6 = dup3(r0, r1, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r5, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0x4d0]}) dup2(r6, r5) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r8 = dup(r7) ioctl$PERF_EVENT_IOC_ENABLE(r8, 0x8912, 0x400200) 07:20:49 executing program 2: r0 = socket$unix(0x1, 0x2, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) r2 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$PIO_FONTX(r2, 0x4b6c, &(0x7f0000000000)={0x200, 0x0, &(0x7f00000000c0)="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"}) 07:20:49 executing program 0: r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040)='/dev/kvm\x00', 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x81) r3 = socket$inet6_tcp(0xa, 0x1, 0x0) r4 = fcntl$dupfd(r3, 0x0, r3) ioctl$PERF_EVENT_IOC_ENABLE(r4, 0x8912, 0x400200) ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000580)={"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"}) openat$selinux_validatetrans(0xffffffffffffff9c, &(0x7f0000000080)='/selinux/validatetrans\x00', 0x1, 0x0) ioctl$KVM_RUN(r2, 0xae80, 0x0) ioctl$KVM_TPR_ACCESS_REPORTING(r2, 0x4008ae89, &(0x7f0000000000)={0x0, 0x0, [0xc0000080]}) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000000)=ANY=[@ANYBLOB='r'], 0x1) 07:20:49 executing program 3: socket$inet_udplite(0x2, 0x2, 0x88) prlimit64(0x0, 0x7, &(0x7f0000000280)={0x7, 0x8d}, 0x0) socket(0x10, 0x80002, 0x0) r0 = socket(0x1000000010, 0x80002, 0x0) ioctl$sock_SIOCGSKNS(r0, 0x894c, 0x0) 07:20:49 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, 0x0}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1569.716522] Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB 07:20:49 executing program 3: socket$inet_udplite(0x2, 0x2, 0x88) prlimit64(0x0, 0x7, &(0x7f0000000280)={0x7, 0x8d}, 0x0) socket(0x10, 0x80002, 0x0) r0 = socket(0x1000000010, 0x80002, 0x0) ioctl$sock_SIOCGSKNS(r0, 0x894c, 0x0) 07:20:49 executing program 2: mkdir(&(0x7f0000000200)='./file0\x00', 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff) mount$fuse(0x20000000, &(0x7f0000000040)='./file0\x00', 0x0, 0x807284, 0x0) r0 = open(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) perf_event_open(&(0x7f000025c000)={0x2, 0x70, 0x3e3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}}, 0x0, 0x0, 0xffffffffffffffff, 0x0) r1 = openat$cgroup_procs(r0, &(0x7f0000000340)='cgroup.procs\x00', 0x2, 0x0) r2 = openat$cgroup_int(r0, &(0x7f0000000140)='cpuset.sched_load_balance\x00', 0x2, 0x0) sendfile(r2, r1, 0x0, 0x100000700) 07:20:49 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, 0x0}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) 07:20:50 executing program 3: socket$inet_udplite(0x2, 0x2, 0x88) prlimit64(0x0, 0x7, &(0x7f0000000280)={0x7, 0x8d}, 0x0) socket(0x10, 0x80002, 0x0) r0 = socket(0x1000000010, 0x80002, 0x0) ioctl$sock_SIOCGSKNS(r0, 0x894c, 0x0) [ 1570.071780] lowmem_reserve[]: 0 0 0 0 0 [ 1570.077321] syz-executor.4: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) 07:20:50 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10) [ 1570.097823] Node 1 Normal free:2140668kB min:53612kB low:67012kB high:80412kB active_anon:1219596kB inactive_anon:12kB active_file:28976kB inactive_file:26652kB unevictable:0kB writepending:376kB present:3932160kB managed:3870192kB mlocked:0kB kernel_stack:13056kB pagetables:29400kB bounce:0kB free_pcp:668kB local_pcp:364kB free_cma:0kB [ 1570.132616] syz-executor.0: page allocation failure: order:0, mode:0x14000c4(GFP_KERNEL|GFP_DMA32), nodemask=(null) [ 1570.153806] syz-executor.4 cpuset=syz4 mems_allowed=0-1 [ 1570.169649] syz-executor.0 cpuset=syz0 mems_allowed=0-1 [ 1570.186549] CPU: 0 PID: 26829 Comm: syz-executor.0 Not tainted 4.14.174-syzkaller #0 [ 1570.194471] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1570.203837] Call Trace: [ 1570.206446] dump_stack+0x13e/0x194 [ 1570.210085] warn_alloc.cold+0x96/0x1af [ 1570.214070] ? zone_watermark_ok_safe+0x280/0x280 [ 1570.219039] ? wait_for_completion+0x390/0x390 [ 1570.223632] __alloc_pages_slowpath+0x2114/0x26c0 [ 1570.228580] ? warn_alloc+0xf0/0xf0 [ 1570.232392] ? find_held_lock+0x2d/0x110 [ 1570.236465] ? fs_reclaim_acquire+0x10/0x10 [ 1570.240805] __alloc_pages_nodemask+0x5d3/0x700 [ 1570.245482] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1570.250506] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1570.255361] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1570.260399] alloc_pages_current+0xe7/0x1e0 [ 1570.264733] kvm_mmu_create+0xd1/0x1c0 [ 1570.268635] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1570.272966] ? alloc_pages_current+0xef/0x1e0 [ 1570.277466] kvm_vcpu_init+0x26d/0x360 [ 1570.281359] vmx_create_vcpu+0xf3/0x2900 [ 1570.285432] ? __mutex_unlock_slowpath+0x75/0x780 [ 1570.290285] ? futex_wake+0x11c/0x3d0 [ 1570.294095] ? handle_rdmsr+0x6b0/0x6b0 [ 1570.298081] kvm_vm_ioctl+0x49c/0x1430 [ 1570.301973] ? __lock_acquire+0x5f7/0x4620 [ 1570.306216] ? kvm_vcpu_release+0xa0/0xa0 [ 1570.310376] ? trace_hardirqs_on+0x10/0x10 [ 1570.315143] ? __lock_is_held+0xad/0x140 [ 1570.319217] ? trace_hardirqs_on+0x10/0x10 [ 1570.323463] ? find_held_lock+0x2d/0x110 [ 1570.327526] ? save_trace+0x290/0x290 [ 1570.331335] ? kvm_vcpu_release+0xa0/0xa0 [ 1570.335493] do_vfs_ioctl+0x75a/0xfe0 [ 1570.339297] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1570.344060] ? ioctl_preallocate+0x1a0/0x1a0 [ 1570.348487] ? security_file_ioctl+0x76/0xb0 [ 1570.352901] ? security_file_ioctl+0x83/0xb0 [ 1570.357321] SyS_ioctl+0x7f/0xb0 [ 1570.360693] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1570.364687] do_syscall_64+0x1d5/0x640 [ 1570.368580] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1570.373771] RIP: 0033:0x45c849 [ 1570.376958] RSP: 002b:00007f75f727ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1570.384672] RAX: ffffffffffffffda RBX: 00007f75f727f6d4 RCX: 000000000045c849 [ 1570.392043] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1570.399439] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1570.406723] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1570.414001] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1570.431785] CPU: 1 PID: 26836 Comm: syz-executor.4 Not tainted 4.14.174-syzkaller #0 [ 1570.439700] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 1570.449081] Call Trace: [ 1570.451682] dump_stack+0x13e/0x194 [ 1570.452532] lowmem_reserve[]: [ 1570.455322] warn_alloc.cold+0x96/0x1af [ 1570.455332] ? zone_watermark_ok_safe+0x280/0x280 [ 1570.455350] ? wait_for_completion+0x390/0x390 [ 1570.461891] 0 [ 1570.462408] __alloc_pages_slowpath+0x2114/0x26c0 [ 1570.462430] ? warn_alloc+0xf0/0xf0 [ 1570.473559] 0 [ 1570.474149] ? find_held_lock+0x2d/0x110 [ 1570.486496] 0 [ 1570.488454] ? fs_reclaim_acquire+0x10/0x10 [ 1570.488474] __alloc_pages_nodemask+0x5d3/0x700 [ 1570.494048] 0 [ 1570.494578] ? rcu_read_lock_sched_held+0x10a/0x130 [ 1570.505584] 0 [ 1570.506046] ? __alloc_pages_nodemask+0x5e0/0x700 [ 1570.506054] Node 0 [ 1570.507841] ? __alloc_pages_slowpath+0x26c0/0x26c0 [ 1570.507862] alloc_pages_current+0xe7/0x1e0 [ 1570.507881] kvm_mmu_create+0xd1/0x1c0 [ 1570.521468] DMA: [ 1570.524257] kvm_arch_vcpu_init+0x28b/0x8b0 [ 1570.524267] ? alloc_pages_current+0xef/0x1e0 [ 1570.524280] kvm_vcpu_init+0x26d/0x360 [ 1570.531605] 1*4kB [ 1570.534529] vmx_create_vcpu+0xf3/0x2900 [ 1570.534547] ? __mutex_unlock_slowpath+0x75/0x780 [ 1570.534557] ? futex_wake+0x11c/0x3d0 [ 1570.534569] ? handle_rdmsr+0x6b0/0x6b0 [ 1570.542728] (M) [ 1570.542972] kvm_vm_ioctl+0x49c/0x1430 [ 1570.547319] 2*8kB [ 1570.549178] ? __lock_acquire+0x5f7/0x4620 [ 1570.549190] ? kvm_vcpu_release+0xa0/0xa0 [ 1570.549202] ? trace_hardirqs_on+0x10/0x10 [ 1570.562813] (H) [ 1570.563785] ? trace_hardirqs_on+0x10/0x10 [ 1570.572762] 3*16kB [ 1570.574046] ? save_trace+0x290/0x290 [ 1570.574056] ? __might_fault+0x104/0x1b0 [ 1570.574072] ? kvm_vcpu_release+0xa0/0xa0 [ 1570.580616] (H) [ 1570.582447] do_vfs_ioctl+0x75a/0xfe0 [ 1570.582459] ? selinux_file_mprotect+0x5c0/0x5c0 [ 1570.582471] ? ioctl_preallocate+0x1a0/0x1a0 [ 1570.586664] 2*32kB [ 1570.588691] ? security_file_ioctl+0x76/0xb0 [ 1570.588702] ? security_file_ioctl+0x83/0xb0 [ 1570.596019] (UH) [ 1570.598883] SyS_ioctl+0x7f/0xb0 [ 1570.598899] ? do_vfs_ioctl+0xfe0/0xfe0 [ 1570.598913] do_syscall_64+0x1d5/0x640 [ 1570.611834] 3*64kB [ 1570.613751] entry_SYSCALL_64_after_hwframe+0x42/0xb7 [ 1570.613761] RIP: 0033:0x45c849 [ 1570.613765] RSP: 002b:00007f4840a4fc78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 1570.619605] (UMH) [ 1570.620387] RAX: ffffffffffffffda RBX: 00007f4840a506d4 RCX: 000000000045c849 [ 1570.620393] RDX: 0000000000000081 RSI: 000000000000ae41 RDI: 0000000000000004 [ 1570.620398] RBP: 000000000076bf00 R08: 0000000000000000 R09: 0000000000000000 [ 1570.620403] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 1570.620408] R13: 000000000000038e R14: 00000000004c6041 R15: 000000000076bf0c [ 1570.856262] 3*128kB (UMH) 2*256kB (UH) 2*512kB (MH) 0*1024kB 0*2048kB 2*4096kB (M) = 10436kB [ 1570.890331] Node 0 DMA32: 732*4kB (UMEH) 1338*8kB (UMEH) 781*16kB (UEH) 228*32kB (UEH) 5*64kB (UE) 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 33744kB [ 1570.964592] Mem-Info: [ 1570.968835] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1570.970617] active_anon:797614 inactive_anon:199 isolated_anon:0 [ 1570.970617] active_file:7252 inactive_file:6664 isolated_file:0 [ 1570.970617] unevictable:0 dirty:95 writeback:0 unstable:0 [ 1570.970617] slab_reclaimable:12635 slab_unreclaimable:132464 [ 1570.970617] mapped:59155 shmem:549 pagetables:16492 bounce:0 [ 1570.970617] free:546248 free_pcp:330 free_cma:0 [ 1571.003000] Node 1 Normal: 142*4kB (UME) 294*8kB (UME) 93*16kB (UME) 146*32kB (UME) 106*64kB (UME) 51*128kB (UM) 33*256kB (UME) 15*512kB (UM) 12*1024kB (UME) 9*2048kB (UME) 506*4096kB (UM) = 2141816kB [ 1571.100133] Node 0 active_anon:1971060kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:208932kB dirty:4kB writeback:0kB shmem:1204kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 1087488kB writeback_tmp:0kB unstable:0kB all_unreclaimable? yes [ 1571.127547] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1571.160293] Node 1 active_anon:1219324kB inactive_anon:16kB active_file:28976kB inactive_file:26684kB unevictable:0kB isolated(anon):0kB isolated(file):0kB mapped:27652kB dirty:424kB writeback:0kB shmem:992kB shmem_thp: 0kB shmem_pmdmapped: 0kB anon_thp: 0kB writeback_tmp:0kB unstable:0kB all_unreclaimable? no [ 1571.162228] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1571.221436] Node 0 DMA free:10436kB min:220kB low:272kB high:324kB active_anon:5436kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15908kB mlocked:0kB kernel_stack:0kB pagetables:4kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1571.266354] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1571.277541] lowmem_reserve[]: 0 2557 2557 2557 2557 [ 1571.288636] Node 0 DMA32 free:33124kB min:36272kB low:45340kB high:54408kB active_anon:1965624kB inactive_anon:784kB active_file:32kB inactive_file:4kB unevictable:0kB writepending:4kB present:3129332kB managed:2621272kB mlocked:0kB kernel_stack:13120kB pagetables:36860kB bounce:0kB free_pcp:268kB local_pcp:108kB free_cma:0kB [ 1571.325556] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 1571.357328] lowmem_reserve[]: 0 0 0 0 0 [ 1571.368327] Node 0 Normal free:0kB min:4kB low:4kB high:4kB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:786432kB managed:348kB mlocked:0kB kernel_stack:0kB pagetables:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1571.395402] 14472 total pagecache pages [ 1571.404075] 0 pages in swap cache [ 1571.412162] Swap cache stats: add 0, delete 0, find 0/0 [ 1571.424372] Free swap = 0kB [ 1571.429758] Total swap = 0kB [ 1571.437561] 1965979 pages RAM [ 1571.444230] 0 pages HighMem/MovableOnly [ 1571.450403] lowmem_reserve[]: 0 0 0 0 0 [ 1571.456820] 339049 pages reserved 07:20:51 executing program 1: r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r0, 0x84, 0x14, &(0x7f0000000000), 0x4) gettid() write(0xffffffffffffffff, 0x0, 0x0) 07:20:51 executing program 5: r0 = socket$inet6(0xa, 0x5, 0x0) shutdown(r0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @ipv4={[], [], @empty}}, 0x1c) listen(r0, 0x100000000000012) sendmmsg$inet(r0, &(0x7f0000000380)=[{{&(0x7f0000000100)={0x2, 0x4e23, @local}, 0x10, &(0x7f0000002640)}}], 0x1, 0x0) r1 = socket$netlink(0x10, 0x3, 0x0) ioctl(r1, 0x1000008912, &(0x7f00000001c0)="080db5055e0bcfe847a071") getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000001c0)={0x0, 0x10, &(0x7f0000000140)=[@in={0x2, 0x4e23, @remote}]}, &(0x7f0000000180)=0x10)